cbcvebase.

Milesight Ip Security Camera Firmware vulnerabilities

5 known vulnerabilities affecting milesight/ip_security_camera_firmware.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL5

Vulnerabilities

Page 1 of 1
CVE-2016-2359P2CRITICALCVSS 9.8≤ 2016-11-142019-10-25
CVE-2016-2359 [CRITICAL] CWE-287 CVE-2016-2359: Milesight IP security cameras through 2016-11-14 allow remote attackers to bypass authentication and Milesight IP security cameras through 2016-11-14 allow remote attackers to bypass authentication and access a protected resource by simultaneously making a request for the unprotected vb.htm resource.
nvd
CVE-2016-2356P3CRITICALCVSS 9.8≤ 2016-11-142019-10-25
CVE-2016-2356 [CRITICAL] CWE-120 CVE-2016-2356: Milesight IP security cameras through 2016-11-14 have a buffer overflow in a web application via a l Milesight IP security cameras through 2016-11-14 have a buffer overflow in a web application via a long username or password.
nvd
CVE-2016-2360P3CRITICALCVSS 9.8≤ 2016-11-142019-10-25
CVE-2016-2360 [CRITICAL] CWE-798 CVE-2016-2360: Milesight IP security cameras through 2016-11-14 have a default root password in /etc/shadow that is Milesight IP security cameras through 2016-11-14 have a default root password in /etc/shadow that is the same across different customers' installations.
nvd
CVE-2016-2358P3CRITICALCVSS 9.8≤ 2016-11-142019-10-25
CVE-2016-2358 [CRITICAL] CWE-798 CVE-2016-2358: Milesight IP security cameras through 2016-11-14 have a default set of 10 privileged accounts with h Milesight IP security cameras through 2016-11-14 have a default set of 10 privileged accounts with hardcoded credentials. They are accessible if the customer has not configured 10 actual user accounts.
nvd
CVE-2016-2357P3CRITICALCVSS 9.8≤ 2016-11-142019-10-25
CVE-2016-2357 [CRITICAL] CWE-798 CVE-2016-2357: Milesight IP security cameras through 2016-11-14 have a hardcoded SSL private key under the /etc/con Milesight IP security cameras through 2016-11-14 have a hardcoded SSL private key under the /etc/config directory.
nvd
Milesight Ip Security Camera Firmware vulnerabilities | cvebase