Lucene search
+L
MilesightDevicehub

6 matches found

CVE
CVE
added 2024/06/02 1:13 p.m.50 views

CVE-2024-27776

CVE-2024-27776 affects MileSight DeviceHub. The issue is a CWE-22 path traversal vulnerability that may allow unauthenticated remote code execution over the network (no user interaction) with a CVSS v3.1 base score of 9.8 (CRITICAL). Root cause is improper limitation of a pathname to a restricted...

9.8CVSS9.5AI score0.00597EPSS
CVE
CVE
added 2024/06/02 1:23 p.m.50 views

CVE-2024-36391

Technical details about CVE-2024-36391 are not publicly available in the provided connected documents; no affected products, versions, impact, or fix details are disclosed here. Monitor for updates.

9.1CVSS9.4AI score0.00353EPSS
CVE
CVE
added 2024/06/02 1:21 p.m.47 views

CVE-2024-36389

The documents identify CVE-2024-36389 as affecting MileSight DeviceHub with CWE-330: Use of Insufficiently Random Values may allow Authentication Bypass. The NVD entry lists a 9.8 CVSS v3.1 score (Network attack, no privileges, high impact on confidentiality, integrity, and availability) and note...

9.8CVSS9.7AI score0.00519EPSS
CVE
CVE
added 2024/06/02 1:22 p.m.46 views

CVE-2024-36390

Technical details about CVE-2024-36390 (affected components, exploit scenarios, and specific versions) are not publicly available in the provided documents. Monitor for updates.

7.5CVSS7.6AI score0.00418EPSS
CVE
CVE
added 2024/06/02 1:14 p.m.45 views

CVE-2024-36388

Technical details (affected product, component, version, root cause, impact, or fix) are not publicly available in the provided documents. Monitor for updates.

10CVSS9.7AI score0.00473EPSS
CVE
CVE
added 2024/06/02 1:24 p.m.43 views

CVE-2024-36392

The CVE-2024-36392 entry concerns MileSight DeviceHub with a cross-site scripting (CWE-79) weakness caused by improper input neutralization during web page generation. According to the public records, the vulnerability is network-exposed, requires user interaction, and the exploit complexity is l...

6.1CVSS6.3AI score0.00272EPSS