Static RSA Key Vulnerability in AXIS OS 11.0.X - 11.3.x

Static RSA Key Vulnerability in AXIS OS 11.0.X - 11.3.x

CVE-2023-21404 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

AXIS OS 11.0.X - 11.3.x use a static RSA key in legacy LUA-components to protect Axis-specific source code. The static RSA key is not used in any other secure communication nor can it be used to compromise the device or any customer data.

Learn more about our Web Application Penetration Testing UK.