A vulnerability marked as critical has been reported in Axis Communications AB AXIS OS up to 12.9.31 . Affected is an unknown function of the component ACAP Handler . The manipulation leads to incorrect permission assignment. This vulnerability is listed as CVE-2026-0541 . The attack must be carried out locally. There is no available exploit. It is suggested to upgrade the affected component.