Scaner-VSvulnerability catalog · v4.2

Home Catalog Sources CWE CAPEC ATT&CK Mitigations Products Vendors Docs

← Back to List

Milesight›Applicationnvd

Devicehub

Vulnerabilities

6

Known exploited

0

Max CVSS

9.8

Top EPSS

0.00597

Severity breakdown

Critical

3

High

2

Medium

1

Low

0

Also matched as (raw): devicehub

Top vulnerabilities

CVE-2024-36389MileSight DeviceHub - CWE-330 Use of Insufficiently Random Values may allow Authentication Bypass

CVE-2024-36388MileSight DeviceHub - CWE-305 Missing Authentication for Critical Function

CVE-2024-27776MileSight DeviceHub - CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') may allow Unauthenticated RCE

CVE-2024-36390MileSight DeviceHub - CWE-20 Improper Input Validation may allow Denial of Service

CVE-2024-36391MileSight DeviceHub - CWE-320: Key Management Errors may allow Authentication Bypass and Man-In-The-Middle Traffic

CVE-2024-36392MileSight DeviceHub - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

View vendor →Open in catalog with product filter →