First published: Tue Nov 21 2023(Updated: )
During internal Axis Security Development Model (ASDM) threat-modelling, a flaw was found in the protection for device tampering (commonly known as Secure Boot) in AXIS OS making it vulnerable to a sophisticated attack to bypass this protection. To Axis' knowledge, there are no known exploits of the vulnerability at this time. Axis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis security advisory for more information and solution.
|Affected Software||Affected Version||How to fix|
|Axis Axis Os||>=10.8<11.7.57|
|Axis Axis Os 2022||<10.12.213|
CVE-2023-5553 is a vulnerability found in the protection for device tampering (Secure Boot) in AXIS OS, allowing for a sophisticated attack to bypass this protection.
The severity of CVE-2023-5553 is high with a CVSS score of 7.6.
CVE-2023-5553 affects AXIS OS versions 10.8 through 11.7.57 and AXIS OS 2022 version up to 10.12.213.
To fix CVE-2023-5553, apply the necessary security updates provided by Axis.
More information about CVE-2023-5553 can be found in the Axis advisory document available at https://www.axis.com/dam/public/0a/66/25/cve-2023-5553-en-US-417789.pdf.