Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
milesight vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2023-43260
Milesight UR5X, UR32L, UR32, UR35, UR41 before v35.3.0.7 exists to contain a cross-site scripting (XSS) vulnerability via the admin panel.
Milesight Ur51 Firmware
Milesight Ur52 Firmware
Milesight Ur55 Firmware
Milesight Ur32l Firmware
Milesight Ur32 Firmware
Milesight Ur35 Firmware
Milesight Ur41 Firmware
7.5
CVSSv3
CVE-2023-43261
An information disclosure in Milesight UR5X, UR32L, UR32, UR35, UR41 before v35.3.0.7 allows malicious users to access sensitive router components.
Milesight Ur5x Firmware
Milesight Ur32l Firmware
Milesight Ur32 Firmware
Milesight Ur35 Firmware
Milesight Ur41 Firmware
1 Github repository
9.8
CVSSv3
CVE-2023-30466
This vulnerability exists in Milesight 4K/H.265 Series NVR models (MS-Nxxxx-xxG, MS-Nxxxx-xxE, MS-Nxxxx-xxT, MS-Nxxxx-xxH and MS-Nxxxx-xxC), due to a weak password reset mechanism at the Milesight NVR web-based management interface. A remote attacker could exploit this vulnerabil...
Milesight Ms-n5008-uc Firmware
Milesight Ms-n1008-unc Firmware
Milesight Ms-n1008-uc Firmware
Milesight Ms-n1004-uc Firmware
Milesight Ms-n5016-e Firmware
Milesight Ms-n5008-e Firmware
Milesight Ms-n7016-uh Firmware
Milesight Ms-n7032-uh Firmware
Milesight Ms-n8064-uh Firmware
Milesight Ms-n8032-uh Firmware
Milesight Ms-n1004-upc Firmware
Milesight Ms-n1008-upc Firmware
Milesight Ms-n1008-unpc Firmware
Milesight Ms-n5008-upc Firmware
Milesight Ms-n5016-pe Firmware
Milesight Ms-n5008-pe Firmware
Milesight Ms-n7016-uph Firmware
Milesight Ms-n7032-uph Firmware
Milesight Ms-n7048-uph Firmware
Milesight Ms-nxxxx-xxg Firmware
Milesight Ms-nxxxx-xxt Firmware
9.8
CVSSv3
CVE-2023-30467
This vulnerability exists in Milesight 4K/H.265 Series NVR models (MS-Nxxxx-xxG, MS-Nxxxx-xxE, MS-Nxxxx-xxT, MS-Nxxxx-xxH and MS-Nxxxx-xxC), due to improper authorization at the Milesight NVR web-based management interface. A remote attacker could exploit this vulnerability by se...
Milesight Ms-n5008-uc Firmware
Milesight Ms-n1008-unc Firmware
Milesight Ms-n1008-uc Firmware
Milesight Ms-n1004-uc Firmware
Milesight Ms-n5016-e Firmware
Milesight Ms-n5008-e Firmware
Milesight Ms-n7016-uh Firmware
Milesight Ms-n7032-uh Firmware
Milesight Ms-n8064-uh Firmware
Milesight Ms-n8032-uh Firmware
Milesight Ms-n1004-upc Firmware
Milesight Ms-n1008-upc Firmware
Milesight Ms-n1008-unpc Firmware
Milesight Ms-n5008-upc Firmware
Milesight Ms-n5016-pe Firmware
Milesight Ms-n5008-pe Firmware
Milesight Ms-n7016-uph Firmware
Milesight Ms-n7032-uph Firmware
Milesight Ms-n7048-uph Firmware
Milesight Ms-nxxxx-xxg Firmware
Milesight Ms-nxxxx-xxt Firmware
7.5
CVSSv3
CVE-2022-3001
This vulnerability exists in Milesight Video Management Systems (VMS), all firmware versions before 40.7.0.79-r1, due to improper input handling at camera’s web-based management interface. A remote attacker could exploit this vulnerability by sending a specially crafted htt...
Milesight Video Management Systems Firmware 40.7.0.79
Milesight Video Management Systems Firmware
9.8
CVSSv3
CVE-2016-2357
Milesight IP security cameras through 2016-11-14 have a hardcoded SSL private key under the /etc/config directory.
Milesight Ip Security Camera Firmware
9.8
CVSSv3
CVE-2016-2360
Milesight IP security cameras through 2016-11-14 have a default root password in /etc/shadow that is the same across different customers' installations.
Milesight Ip Security Camera Firmware
9.8
CVSSv3
CVE-2016-2356
Milesight IP security cameras through 2016-11-14 have a buffer overflow in a web application via a long username or password.
Milesight Ip Security Camera Firmware
9.8
CVSSv3
CVE-2016-2358
Milesight IP security cameras through 2016-11-14 have a default set of 10 privileged accounts with hardcoded credentials. They are accessible if the customer has not configured 10 actual user accounts.
Milesight Ip Security Camera Firmware
9.8
CVSSv3
CVE-2016-2359
Milesight IP security cameras through 2016-11-14 allow remote malicious users to bypass authentication and access a protected resource by simultaneously making a request for the unprotected vb.htm resource.
Milesight Ip Security Camera Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »