Milesight Ms-c5366-x12lpc
5 CVEs affecting Milesight Ms-c5366-x12lpc. Latest disclosed: 2026-04-28. Critical: 1, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-32644 | Critical | 9.8 | 2026-04-28 | Specific firmware versions of Milesight AIOT cameras use SSL certificates with default private keys. |
CVE-2026-20766 | High | 8.8 | 2026-04-28 | An out-of-bounds memory access vulnerability exists in specific firmware versions of Milesight AIOT cameras. |
CVE-2026-27785 | High | 8.8 | 2026-04-28 | Specific firmware versions of Milesight AIOT camera firmware contain hard-coded credentials. |
CVE-2026-28747 | High | 7.1 | 2026-04-27 | A weak key generation vulnerability exists in specific firmware versions of Milesight AIOT cameras allows authorization to be bypassed. |
CVE-2026-32649 | Medium | 6.8 | 2026-04-28 | A command injection vulnerability exists in the web server of specific firmware versions of Milesight cameras. |