{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-14T15:26:49.748","vulnerabilities":[{"cve":{"id":"CVE-2025-0325","sourceIdentifier":"product-security@axis.com","published":"2025-06-02T08:15:20.767","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A Guard Tour VAPIX API parameter allowed the use of arbitrary values and can be incorrectly called, allowing an attacker to block access to the guard tour configuration page in the web interface of the Axis device."},{"lang":"es","value":"Un parámetro de Guard Tour VAPIX API permitía el uso de valores arbitrarios y se podía llamar incorrectamente, lo que permitía a un atacante bloquear el acceso a la página de configuración de ronda de guardia en la interfaz web del dispositivo Axis."}],"metrics":{"cvssMetricV31":[{"source":"product-security@axis.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"product-security@axis.com","type":"Secondary","description":[{"lang":"en","value":"CWE-628"},{"lang":"en","value":"CWE-1287"}]}],"references":[{"url":"https://www.axis.com/dam/public/d0/ae/fe/cve-2025-0325pdf-en-US-483808.pdf","source":"product-security@axis.com"}]}}]}