Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Milesight Network Cameras Authentication Bypass Vulnerability
Information
Severity
Severity
High
Family
Family
Default Accounts
CVSSv2 Base
CVSSv2 Base
7.5
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Solution Type
Solution Type
Vendor Patch
Created
Created
4 years ago
Modified
Modified
4 years ago
Summary
Milesight Network Cameras are prone to an authentication bypass vulnerability.
Insight
Insight
Remote attackers are allowed to bypass authentication and access a protected resource by simultaneously making a request for the unprotected vb.htm resource.
Affected Software
Affected Software
All Milesight Network Cameras.
Detection Method
Detection Method
Tries to exploit the vulnerability by displaying a certain set of strings, which usually requires authentication.
Solution
Solution
According to the security researchers, Milesight has already fixed this vulnerability. Make sure to update to the latest version.