Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

Tenable Nessus
Tenable Nessusadded 2024/03/14 12:0 a.m.10 views

Milesight MilesightVPN Detection

Binary data milesightmilesightvpndetect.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2024/03/14 12:0 a.m.19 views

Milesight MilesightVPN Authentication Bypass (CVE-2023-22844)

Binary data milesightmilesightvpncve-2023-22844.nbin...

9.8CVSS8.6AI score0.00031EPSS
Exploits1References2
Talos Blog
Talos Blogadded 2023/07/19 3:58 p.m.39 views

Memory corruption vulnerability in Microsoft Edge; MilesightVPN and router could be taken over

Since the beginning of July, Cisco Talos has published 40 vulnerability advisories affecting a range of software and hardware, including the Microsoft Edge browser. In our new series called "Vulnerability Roundup," well be recapping the vulnerabilities we recently disclosed to provide readers wit...

4.4CVSS9.3AI score0.01428EPSS
Exploits3
Talos Blog
Talos Blogadded 2023/07/06 3:38 p.m.42 views

Taking over Milesight UR32L routers behind a VPN: 22 vulnerabilities and a full chain

Cisco Talos discovered 17 vulnerabilities 63 CVEs in the Milesight UR32L router and five vulnerabilities six CVEs in the Milesight MilesightVPN remote access solution software. An attacker could exploit the vulnerabilities discovered to completely compromise the UR32L and MilesightVPN. This post...

7.5CVSS9.4AI score0.03072EPSS
Exploits26
Vulnrichment
Vulnrichmentadded 2023/07/06 2:53 p.m.9 views

CVE-2023-22371

An os command injection vulnerability exists in the liburvpn.so createprivatekey functionality of Milesight VPN v2.0.2. A specially-crafted network request can lead to command execution. An attacker can send a malicious packet to trigger this vulnerability...

8.1CVSS8.3AI score0.00346EPSS
Exploits1References1
Talos
Talosadded 2023/07/06 12:0 a.m.17 views

Milesight MilesightVPN requestHandlers.js verifyToken authentication bypass vulnerability

Talos Vulnerability Report TALOS-2023-1700 Milesight MilesightVPN requestHandlers.js verifyToken authentication bypass vulnerability July 6, 2023 CVE Number CVE-2023-22844 SUMMARY An authentication bypass vulnerability exists in the requestHandlers.js verifyToken functionality of Milesight VPN...

9.8CVSS8.6AI score0.00031EPSS
Exploits1
Talos
Talosadded 2023/07/06 12:0 a.m.26 views

Milesight MilesightVPN liburvpn.so create_private_key OS command injection vulnerability

Talos Vulnerability Report TALOS-2023-1703 Milesight MilesightVPN liburvpn.so createprivatekey OS command injection vulnerability July 6, 2023 CVE Number CVE-2023-22371 SUMMARY An os command injection vulnerability exists in the liburvpn.so createprivatekey functionality of Milesight VPN v2.0.2. ...

8.1CVSS8.6AI score0.00346EPSS
Exploits1
Talos
Talosadded 2023/07/06 12:0 a.m.32 views

Milesight MilesightVPN requestHandlers.js detail_device cross-site scripting (XSS) vulnerabilities

Talos Vulnerability Report TALOS-2023-1704 Milesight MilesightVPN requestHandlers.js detaildevice cross-site scripting XSS vulnerabilities July 6, 2023 CVE Number CVE-2023-24497,CVE-2023-24496 SUMMARY Cross-site scripting xss vulnerabilities exist in the requestHandlers.js detaildevice...

4.7CVSS5.7AI score0.00211EPSS
Exploits2
Talos
Talosadded 2023/07/06 12:0 a.m.25 views

Milesight MilesightVPN server.js start directory traversal vulnerability

Talos Vulnerability Report TALOS-2023-1702 Milesight MilesightVPN server.js start directory traversal vulnerability July 6, 2023 CVE Number CVE-2023-23907 SUMMARY A directory traversal vulnerability exists in the server.js start functionality of Milesight VPN v2.0.2. A specially-crafted network...

7.5CVSS7.7AI score0.00232EPSS
Exploits1
Talos
Talosadded 2023/07/06 12:0 a.m.28 views

Milesight MilesightVPN requestHandlers.js LoginAuth SQL injection vulnerability

Talos Vulnerability Report TALOS-2023-1701 Milesight MilesightVPN requestHandlers.js LoginAuth SQL injection vulnerability July 6, 2023 CVE Number CVE-2023-22319 SUMMARY A sql injection vulnerability exists in the requestHandlers.js LoginAuth functionality of Milesight VPN v2.0.2. A...

9.8CVSS9AI score0.00026EPSS
Exploits1
Rows per page
Query Builder