All 6 CVE vulnerabilities found in DeviceHub, with AI-generated Chinese analysis, references, and POCs.
Vendor: MileSight
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-36392 | MileSight DeviceHub - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-79 | 6.1 | Medium | 2024-06-02 |
| CVE-2024-36391 | MileSight DeviceHub - CWE-320: Key Management Errors CWE-320 | 9.1 | Critical | 2024-06-02 |
| CVE-2024-36390 | MileSight DeviceHub - CWE-20 Improper Input Validation CWE-20 | 7.5 | High | 2024-06-02 |
| CVE-2024-36389 | MileSight DeviceHub - CWE-330 Use of Insufficiently Random Values CWE-330 | 9.8 | Critical | 2024-06-02 |
| CVE-2024-36388 | MileSight DeviceHub - CWE-305 Missing Authentication for Critical Function CWE-305 | 10.0 | Critical | 2024-06-02 |
| CVE-2024-27776 | MileSight DeviceHub - CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-22 | 9.8 | Critical | 2024-06-02 |
All 6 known CVE vulnerabilities affecting DeviceHub with full Chinese analysis, references, and POCs where available.