In 2018, Tenable published a blog post on how to get Remote Code Execution (RCE) on an Axis IP Camera with administrative credentials for the web application. By uploading a malicious APP file with the EAP extension, it’s possible to execute code on the operating system level for persistence or data exfiltration.
Axis Camera APP takeover
This blog post was written and published on my employer’s website, where it can be found here: