Devicehub
by Milesight
CVEs (6)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-36388 | Cri | 0.65 | 10.0 | 0.00 | Jun 2, 2024 | MileSight DeviceHub - CWE-305 Missing Authentication for Critical Function | ||
| CVE-2024-36389 | Cri | 0.64 | 9.8 | 0.01 | Jun 2, 2024 | MileSight DeviceHub - CWE-330 Use of Insufficiently Random Values may allow Authentication Bypass | ||
| CVE-2024-27776 | Cri | 0.64 | 9.8 | 0.01 | Jun 2, 2024 | MileSight DeviceHub - CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') may allow Unauthenticated RCE | ||
| CVE-2024-36391 | Cri | 0.59 | 9.1 | 0.00 | Jun 2, 2024 | MileSight DeviceHub - CWE-320: Key Management Errors may allow Authentication Bypass and Man-In-The-Middle Traffic | ||
| CVE-2024-36390 | Hig | 0.49 | 7.5 | 0.00 | Jun 2, 2024 | MileSight DeviceHub - CWE-20 Improper Input Validation may allow Denial of Service | ||
| CVE-2024-36392 | Med | 0.40 | 6.1 | 0.00 | Jun 2, 2024 | MileSight DeviceHub - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') |
- risk 0.65cvss 10.0epss 0.00
MileSight DeviceHub - CWE-305 Missing Authentication for Critical Function
- risk 0.64cvss 9.8epss 0.01
MileSight DeviceHub - CWE-330 Use of Insufficiently Random Values may allow Authentication Bypass
- risk 0.64cvss 9.8epss 0.01
MileSight DeviceHub - CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') may allow Unauthenticated RCE
- risk 0.59cvss 9.1epss 0.00
MileSight DeviceHub - CWE-320: Key Management Errors may allow Authentication Bypass and Man-In-The-Middle Traffic
- risk 0.49cvss 7.5epss 0.00
MileSight DeviceHub - CWE-20 Improper Input Validation may allow Denial of Service
- risk 0.40cvss 6.1epss 0.00
MileSight DeviceHub - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')