Lucene search
K

36 matches found

NVD
NVD
added 2024/06/02 2:15 p.m.25 views

CVE-2024-36389

MileSight DeviceHub - CWE-330 Use of Insufficiently Random Values may allow Authentication Bypass...

9.8CVSS9.7AI score0.00519EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/02 1:24 p.m.31 views

CVE-2024-36392 MileSight DeviceHub - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

MileSight DeviceHub - CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...

6.1CVSS6.3AI score0.00272EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/02 1:24 p.m.21 views

CVE-2024-36392 MileSight DeviceHub - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

MileSight DeviceHub - CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...

6.1CVSS7AI score0.00272EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/02 1:23 p.m.25 views

CVE-2024-36391 MileSight DeviceHub - CWE-320: Key Management Errors

MileSight DeviceHub - CWE-320: Key Management Errors may allow Authentication Bypass and Man-In-The-Middle Traffic...

9.1CVSS7AI score0.00353EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/02 1:23 p.m.29 views

CVE-2024-36391 MileSight DeviceHub - CWE-320: Key Management Errors

MileSight DeviceHub - CWE-320: Key Management Errors may allow Authentication Bypass and Man-In-The-Middle Traffic...

9.1CVSS9.4AI score0.00353EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/02 1:22 p.m.26 views

CVE-2024-36390 MileSight DeviceHub - CWE-20 Improper Input Validation

MileSight DeviceHub - CWE-20 Improper Input Validation may allow Denial of Service...

7.5CVSS7AI score0.00418EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/02 1:22 p.m.28 views

CVE-2024-36390 MileSight DeviceHub - CWE-20 Improper Input Validation

MileSight DeviceHub - CWE-20 Improper Input Validation may allow Denial of Service...

7.5CVSS7.6AI score0.00418EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/02 1:21 p.m.34 views

CVE-2024-36389 MileSight DeviceHub - CWE-330 Use of Insufficiently Random Values

MileSight DeviceHub - CWE-330 Use of Insufficiently Random Values may allow Authentication Bypass...

9.8CVSS9.7AI score0.00519EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/02 1:21 p.m.18 views

CVE-2024-36389 MileSight DeviceHub - CWE-330 Use of Insufficiently Random Values

MileSight DeviceHub - CWE-330 Use of Insufficiently Random Values may allow Authentication Bypass...

9.8CVSS7.1AI score0.00519EPSS
Exploits0References1
OSV
OSV
added 2024/06/02 1:15 p.m.2 views

CVE-2024-27776

MileSight DeviceHub - CWE-22 Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' may allow Unauthenticated RCE...

9.8CVSS5.8AI score0.00597EPSS
Exploits0References1
NVD
NVD
added 2024/06/02 1:15 p.m.19 views

CVE-2024-27776

MileSight DeviceHub - CWE-22 Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' may allow Unauthenticated RCE...

9.8CVSS9.5AI score0.00597EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/02 1:14 p.m.17 views

CVE-2024-36388 MileSight DeviceHub - CWE-305 Missing Authentication for Critical Function

MileSight DeviceHub - CWE-305 Missing Authentication for Critical Function...

10CVSS7.1AI score0.00473EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/02 1:14 p.m.22 views

CVE-2024-36388 MileSight DeviceHub - CWE-305 Missing Authentication for Critical Function

MileSight DeviceHub - CWE-305 Missing Authentication for Critical Function...

10CVSS9.7AI score0.00473EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/02 1:13 p.m.17 views

CVE-2024-27776 MileSight DeviceHub - CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

MileSight DeviceHub - CWE-22 Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' may allow Unauthenticated RCE...

9.8CVSS9.5AI score0.00597EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/02 1:13 p.m.19 views

CVE-2024-27776 MileSight DeviceHub - CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

MileSight DeviceHub - CWE-22 Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' may allow Unauthenticated RCE...

9.8CVSS6.9AI score0.00597EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/05/29 12:0 a.m.6 views

The vulnerability of the MileSight DeviceHub deployment platform exists due to the lack of measures taken to protect the website structure, allowing a violator to execute arbitrary code.

The vulnerability of the MileSight DeviceHub deployment platform exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

10CVSS5.9AI score0.00272EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder