Ip Security Camera Firmware

ip_security_camera_firmware

Vendor: Milesight • 5 CVEs

CVEs (5)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2016-2360 1Milesight 1Ip Security Camera Firmware Nov 21, 2024 Oct 25, 2019 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 Milesight IP security cameras through 2016-11-14 have a default root password in /etc/shadow that is the same across different customers' installations.
CVE-2016-2359 1Milesight 1Ip Security Camera Firmware Nov 21, 2024 Oct 25, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Milesight IP security cameras through 2016-11-14 allow remote attackers to bypass authentication and access a protected resource by simultaneously making a request for the unprotected vb.htm resource.
CVE-2016-2358 1Milesight 1Ip Security Camera Firmware Nov 21, 2024 Oct 25, 2019 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 Milesight IP security cameras through 2016-11-14 have a default set of 10 privileged accounts with hardcoded credentials. They are accessible if the customer has not configured 10 actual user accounts.
CVE-2016-2357 1Milesight 1Ip Security Camera Firmware Nov 21, 2024 Oct 25, 2019 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 Milesight IP security cameras through 2016-11-14 have a hardcoded SSL private key under the /etc/config directory.
CVE-2016-2356 1Milesight 1Ip Security Camera Firmware Nov 21, 2024 Oct 25, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Milesight IP security cameras through 2016-11-14 have a buffer overflow in a web application via a long username or password.