22 matches found
CVE-2025-0836
Missing Authorization vulnerability in Milestone Systems XProtect VMS allows users with read-only access to Management Server to have full read/write access to MIP Webhooks API...
CVE-2025-0836
Missing Authorization vulnerability in Milestone Systems XProtect VMS allows users with read-only access to Management Server to have full read/write access to MIP Webhooks API...
CVE-2025-0836 XProtect MIP API Missing Authorization
Missing Authorization vulnerability in Milestone Systems XProtect VMS allows users with read-only access to Management Server to have full read/write access to MIP Webhooks API...
CVE-2025-0836 XProtect MIP API Missing Authorization
Missing Authorization vulnerability in Milestone Systems XProtect VMS allows users with read-only access to Management Server to have full read/write access to MIP Webhooks API...
CVE-2025-0836
CVE-2025-0836 – Milestone XProtect VMS is described as a Missing Authorization vulnerability where users with read-only access to the Management Server can obtain full read/write access to the MIP Webhooks API. The issue is documented across multiple feeds (NVD, Red Hat, ENISA EUVD, CVE and vendo...
PT-2025-51471
Missing Authorization vulnerability in Milestone Systems XProtect VMS allows users with read-only access to Management Server to have full read/write access to MIP Webhooks API...
Milestone Systems XProtect VMS 安全漏洞
Milestone Systems XProtect VMS is a video management software from Milestone Systems, USA. A security vulnerability exists in Milestone Systems XProtect VMS that stems from an authorization gap that could result in a read-only user gaining full read and write access to the MIP Webhooks API...
EUVD-2018-19603
Malware in sbrugna...
EUVD-2024-50965
Malicious code in bioql PyPI...
CVE-2025-1688
Milestone Systems has discovered a security vulnerability in Milestone XProtect installer that resets system configuration password after the upgrading from older versions using specific installers. The system configuration password is an additional, optional protection that is enabled on the...
CVE-2025-1688
Milestone Systems has discovered a security vulnerability in Milestone XProtect installer that resets system configuration password after the upgrading from older versions using specific installers. The system configuration password is an additional, optional protection that is enabled on the...
CVE-2025-1688 System configuration password reset
Milestone Systems has discovered a security vulnerability in Milestone XProtect installer that resets system configuration password after the upgrading from older versions using specific installers. The system configuration password is an additional, optional protection that is enabled on the...
CVE-2025-1688 System configuration password reset
Milestone Systems has discovered a security vulnerability in Milestone XProtect installer that resets system configuration password after the upgrading from older versions using specific installers. The system configuration password is an additional, optional protection that is enabled on the...
CVE-2025-1688
CVE-2025-1688 affects Milestone XProtect installer behavior where upgrading from older versions using 2024 R1/R2 installers resets the Management Server’s system configuration password. The vulnerability is triggered during upgrade processes and could bypass password protection, potentially impac...
Milestone XProtect 安全漏洞
Milestone XProtect is a video management software from Milestone. A security vulnerability exists in Milestone XProtect versions 2024 R1 through 2024 R2, which originates from resetting the system configuration password during the upgrade process, which could lead to a security configuration...
CVE-2024-12569
Disclosure of sensitive information in a Milestone XProtect Device Pack driver’s log file for third-party cameras, allows an attacker to read camera credentials stored in the Recording Server under specific conditions...
PT-2024-17657 · Hikvision +1 · Hikvision Camera Driver +1
Name of the Vulnerable Software and Affected Versions: Milestone XProtect Device Pack affected versions not specified HikVision camera driver in XProtect Device Pack affected versions not specified Description: The issue is related to the disclosure of sensitive information in a log file of the...
Milestone XProtect Device Pack 安全漏洞
Milestone XProtect Device Pack is a driver pack from Milestone. A security vulnerability exists in Milestone XProtect Device Pack version 13.1a and prior versions, which originates from a possible buffer overflow in the camera driver, allowing an attacker with internal network access to execute...
Siemens Milestone XProtect Video Management Software Deserialization Elevation of Privilege Vulnerability
Siemens Milestone XProtect Video Management Software is a suite of video management software for managing surveillance video and other content. A deserialization elevation of privilege vulnerability exists in a .NET remote endpoint in multiple versions of Milestone XProtect Video Management...
CVE-2018-7891
The Milestone XProtect Video Management Software Corporate, Expert, Professional+, Express+, Essential+ 2016 R1 10.0.a to 2018 R1 12.1a contains .NET Remoting endpoints that are vulnerable to deserialization attacks resulting in remote code execution...