Medium severity6.3NVD Advisory· Published Dec 16, 2025· Updated Apr 15, 2026
CVE-2025-0836
CVE-2025-0836
Description
Missing Authorization vulnerability in Milestone Systems XProtect VMS allows users with read-only access to Management Server to have full read/write access to MIP Webhooks API.
Affected products
1Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.