CVE-2026-32649 - Vulnerability Details

A command injection vulnerability exists in the web server of specific firmware versions of Milesight cameras.

Attack Vector Network

Attack Complexity Low

Privileges Required High

Attack Requirements Present

User Interaction Passive

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Milesight

MS-Cxx63-PD

unaffected

Version	Status	Constraints
`0`	affected	≤ 51.7.0.77-r12

Milesight

MS-Cxx64-xPD

unaffected

Version	Status	Constraints
`0`	affected	≤ 51.7.0.77-r12

Milesight

MS-Cxx73-xPD

unaffected

Version	Status	Constraints
`0`	affected	≤ 51.7.0.77-r12

Milesight

MS-Cxx75-xxPD

unaffected

Version	Status	Constraints
`0`	affected	≤ 51.7.0.77-r12

Milesight

MS-Cxx83-xPD

unaffected

Version	Status	Constraints
`0`	affected	≤ 51.7.0.77-r12

Milesight

MS-Cxx74-PA

unaffected

Version	Status	Constraints
`0`	affected	≤ 3x.8.0.3-r11

Milesight

MS-C8477-HPG1

unaffected

Version	Status	Constraints
`0`	affected	≤ 63.8.0.4-r3

Milesight

MS-C8477-PC

unaffected

Version	Status	Constraints
`0`	affected	≤ 48.8.0.4-r3

Milesight

MS-C5321-FPE

unaffected

Version	Status	Constraints
`0`	affected	≤ 62.8.0.4-r5

Milesight

MS-Cxx72-xxxPE

unaffected

Version	Status	Constraints
`0`	affected	≤ 61.8.0.5-r2

Milesight

MS-Cxx62-xxxPE

unaffected

Version	Status	Constraints
`0`	affected	≤ 61.8.0.5-r2

Milesight

MS-Cxx52-xxxPE

unaffected

Version	Status	Constraints
`0`	affected	≤ 61.8.0.5-r2

Milesight

MS-Cxx66-xxxPE

unaffected

Version	Status	Constraints
`0`	affected	≤ 61.8.0.5-r2

Milesight

MS-Cxx66-xxxGPE

unaffected

Version	Status	Constraints
`0`	affected	≤ 61.8.0.5-r2

Milesight

MS-Cxx61-xxxPE

unaffected

Version	Status	Constraints
`0`	affected	≤ 61.8.0.5-r2

Milesight

MS-Cxx67-xxxPE

unaffected

Version	Status	Constraints
`0`	affected	≤ 61.8.0.5-r2

Milesight

MS-Cxx71-xxxPE

unaffected

Version	Status	Constraints
`0`	affected	≤ 61.8.0.5-r2

Milesight

MS-Cxx41-xxxPE

unaffected

Version	Status	Constraints
`0`	affected	≤ 61.8.0.5-r2

Milesight

MS-Cxx76-PE

unaffected

Version	Status	Constraints
`0`	affected	≤ 61.8.0.5-r2

Milesight

MS-Cxx65-PE

unaffected

Version	Status	Constraints
`0`	affected	≤ 61.8.0.5-r2

Milesight

MS-Cxx66-xxxG1

unaffected

Version	Status	Constraints
`0`	affected	≤ 63.8.0.5-r3

Milesight

MS-Cxx62-xxxG1

unaffected

Version	Status	Constraints
`0`	affected	≤ 63.8.0.5-r3

Milesight

MS-Cxx72-xxxG1

unaffected

Version	Status	Constraints
`0`	affected	≤ 63.8.0.5-r3

Milesight

MS-CQxx31-xxxG1

unaffected

Version	Status	Constraints
`0`	affected	≤ CQ_63.8.0.5-r1

Milesight

MS-CQxx68-xxxG1

unaffected

Version	Status	Constraints
`0`	affected	≤ CQ_63.8.0.5-r1

Milesight

MS-CQxx72-xxxG1

unaffected

Version	Status	Constraints
`0`	affected	≤ CQ_63.8.0.5-r1

Milesight

MS-Nxxxx-NxE

unaffected

Version	Status	Constraints
`0`	affected	≤ 7x.9.0.19-r5

Milesight

MS-Nxxxx-xxC

unaffected

Version	Status	Constraints
`0`	affected	≤ 7x.9.0.19-r5

Milesight

MS-Nxxxx-xxE

unaffected

Version	Status	Constraints
`0`	affected	≤ 7x.9.0.19-r5

Milesight

MS-Nxxxx-xxG

unaffected

Version	Status	Constraints
`0`	affected	≤ 7x.9.0.19-r5

Milesight

MS-Nxxxx-xxH

unaffected

Version	Status	Constraints
`0`	affected	≤ 7x.9.0.19-r5

Milesight

MS-Nxxxx-xxT

unaffected

Version	Status	Constraints
`0`	affected	≤ 7x.9.0.19-r5

Milesight

PMC8266-FPE

unaffected

Version	Status	Constraints
`0`	affected	≤ PO_61.8.0.4_LPR

Milesight

PMC8266-FGPE

unaffected

Version	Status	Constraints
`0`	affected	≤ PO_61.8.0.4_LPR

Milesight

PM3322-E

unaffected

Version	Status	Constraints
`0`	affected	≤ PI_61.8.0.3_LPR-r3

Milesight

TS4466-X4RIPG1

unaffected

Version	Status	Constraints
`0`	affected	≤ T_63.8.0.4_LPR-r3

Milesight

TS5366-X12RIPG1

unaffected

Version	Status	Constraints
`0`	affected	≤ T_63.8.0.4_LPR-r3

Milesight

TS8266-X4RIPG1

unaffected

Version	Status	Constraints
`0`	affected	≤ T_63.8.0.4_LPR-r3

Milesight

TS4466-X4RIVPG1

unaffected

Version	Status	Constraints
`0`	affected	≤ T_63.8.0.4_LPR-r3

Milesight

TS4466-RFIVPG1

unaffected

Version	Status	Constraints
`0`	affected	≤ T_63.8.0.4_LPR-r3

Milesight

TS8266-X4RIVPG1

unaffected

Version	Status	Constraints
`0`	affected	≤ T_63.8.0.4_LPR-r3

Milesight

TS8266-RFIVPG1

unaffected

Version	Status	Constraints
`0`	affected	≤ T_63.8.0.4_LPR-r3

Milesight

TS4466-X4RIWG1

unaffected

Version	Status	Constraints
`0`	affected	≤ T_63.8.0.4_LPR-r3

Milesight

TS8266-X4RIWG1

unaffected

Version	Status	Constraints
`0`	affected	≤ T_63.8.0.4_LPR-r3

Milesight

TS5510-GVH

unaffected

Version	Status	Constraints
`0`	affected	≤ T_47.8.0.4_LPR-r7

Milesight

TS5510-GH

unaffected

Version	Status	Constraints
`0`	affected	≤ T_47.8.0.4_LPR-r6

Milesight

TS5511-GVH

unaffected

Version	Status	Constraints
`0`	affected	≤ T_47.8.0.4_LPR-r6

Milesight

TS2966-X12TPE

unaffected

Version	Status	Constraints
`0`	affected	≤ T_61.8.0.4_LPR-r3

Milesight

TS4466-X4RPE

unaffected

Version	Status	Constraints
`0`	affected	≤ T_61.8.0.4_LPR-r3

Milesight

TS5366-X12PE

unaffected

Version	Status	Constraints
`0`	affected	≤ T_61.8.0.4_LPR-r3

Milesight

TS8266-X4PE

unaffected

Version	Status	Constraints
`0`	affected	≤ T_61.8.0.4_LPR-r3

Milesight

TS2966-X12TVPE

unaffected

Version	Status	Constraints
`0`	affected	≤ T_61.8.0.4_LPR-r3

Milesight

TS4466-X4RVPE

unaffected

Version	Status	Constraints
`0`	affected	≤ T_61.8.0.4_LPR-r3

Milesight

TS5366-X12VPE

unaffected

Version	Status	Constraints
`0`	affected	≤ T_61.8.0.4_LPR-r3

Milesight

TS8266-X4VPE

unaffected

Version	Status	Constraints
`0`	affected	≤ T_61.8.0.4_LPR-r3

Milesight

TS4441-X36RPE

unaffected

Version	Status	Constraints
`0`	affected	≤ T_61.8.0.4_LPR-r3

Milesight

TS4441-X36RE

unaffected

Version	Status	Constraints
`0`	affected	≤ T_61.8.0.4_LPR-r3

Milesight

TS4466-X4RWE

unaffected

Version	Status	Constraints
`0`	affected	≤ T_61.8.0.4_LPR-r3

Milesight

TS8266-X4WE

unaffected

Version	Status	Constraints
`0`	affected	≤ T_61.8.0.4_LPR-r3

Milesight

MS-C2964-RFLPC

unaffected

Version	Status	Constraints
`0`	affected	≤ T_45.8.0.3-r9

Milesight

MS-C2972-RFLPC

unaffected

Version	Status	Constraints
`0`	affected	≤ T_45.8.0.3-r9

Milesight

MS-C2966-RFLWPC

unaffected

Version	Status	Constraints
`0`	affected	≤ T_45.8.0.3-r9

Milesight

TS2866-X4TPC

unaffected

Version	Status	Constraints
`0`	affected	≤ T_45.8.0.3-r9

Milesight

TS2866-X4TVPC

unaffected

Version	Status	Constraints
`0`	affected	≤ T_45.8.0.3-r9

Milesight

TS2866-X4TGPC

unaffected

Version	Status	Constraints
`0`	affected	≤ T_45.8.0.3-r9

Milesight

TS2841-X36TPC

unaffected

Version	Status	Constraints
`0`	affected	≤ T_45.8.0.3-r9

Milesight

TS2841-X36TPC/W

unaffected

Version	Status	Constraints
`0`	affected	≤ T_45.8.0.3-r9

Milesight

TS2867-X5TPC

unaffected

Version	Status	Constraints
`0`	affected	≤ T_45.8.0.3-r9

Milesight

TS2961-X12TPC

unaffected

Version	Status	Constraints
`0`	affected	≤ T_45.8.0.3-r9

Milesight

TS8266-FPC/P

unaffected

Version	Status	Constraints
`0`	affected	≤ T_45.8.0.3-r9

Milesight

MS-C2966-X12RLPC

unaffected

Version	Status	Constraints
`0`	affected	≤ T_45.8.0.3-r9

Milesight

MS-C2966-X12RLVPC

unaffected

Version	Status	Constraints
`0`	affected	≤ T_45.8.0.3-r9

Milesight

MS-C5366-X12LPC

unaffected

Version	Status	Constraints
`0`	affected	≤ T_45.8.0.3-r9

Milesight

MS-C5366-X12LVPC

unaffected

Version	Status	Constraints
`0`	affected	≤ T_45.8.0.3-r9

Milesight

MS-C5361-X12LPC

unaffected

Version	Status	Constraints
`0`	affected	≤ T_45.8.0.3-r9

Milesight

MS-Cxx66-xxxxGOPC

unaffected

Version	Status	Constraints
`0`	affected	≤ 45.8.0.2-AIoT-r4

Milesight

SC211

unaffected

Version	Status	Constraints
`0`	affected	≤ C_21.1.0.8-r4

Milesight

SP111

unaffected

Version	Status	Constraints
`0`	affected	≤ 52.8.0.4-r5

Milesight

MS-Cxx66-RFIPKG1

unaffected

Version	Status	Constraints
`0`	affected	≤ 63.8.0.4-r1-NX

Milesight

MS-Cxx72-RFIPKG1

unaffected

Version	Status	Constraints
`0`	affected	≤ 63.8.0.4-r1-NX

Milesight

MS-Cxx66-FIPKG1

unaffected

Version	Status	Constraints
`0`	affected	≤ 63.8.0.4-r1-NX

Milesight

MS-Cxx72-FIPKG1

unaffected

Version	Status	Constraints
`0`	affected	≤ 63.8.0.4-r1-NX

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors	Products
Milesight Subscribe	Ms-c2964-rflpc Subscribe Ms-c2966-rflwpc Subscribe Ms-c2966-x12rlpc Subscribe Ms-c2966-x12rlvpc Subscribe Ms-c2972-rflpc Subscribe Ms-c5321-fpe Subscribe Ms-c5361-x12lpc Subscribe Ms-c5366-x12lpc Subscribe Ms-c5366-x12lvpc Subscribe Ms-c8477-hpg1 Subscribe Ms-c8477-pc Subscribe Ms-cqxx31-xxxg1 Subscribe Ms-cqxx68-xxxg1 Subscribe Ms-cqxx72-xxxg1 Subscribe Ms-cxx41-xxxpe Subscribe Ms-cxx52-xxxpe Subscribe Ms-cxx61-xxxpe Subscribe Ms-cxx62-xxxg1 Subscribe Ms-cxx62-xxxpe Subscribe Ms-cxx63-pd Subscribe Ms-cxx64-xpd Subscribe Ms-cxx65-pe Subscribe Ms-cxx66-fipkg1 Subscribe Ms-cxx66-rfipkg1 Subscribe Ms-cxx66-xxxg1 Subscribe Ms-cxx66-xxxgpe Subscribe Ms-cxx66-xxxpe Subscribe Ms-cxx66-xxxxgopc Subscribe Ms-cxx67-xxxpe Subscribe Ms-cxx71-xxxpe Subscribe Ms-cxx72-fipkg1 Subscribe Ms-cxx72-rfipkg1 Subscribe Ms-cxx72-xxxg1 Subscribe Ms-cxx72-xxxpe Subscribe Ms-cxx73-xpd Subscribe Ms-cxx74-pa Subscribe Ms-cxx75-xxpd Subscribe Ms-cxx76-pe Subscribe Ms-cxx83-xpd Subscribe Ms-nxxxx-nxe Subscribe Ms-nxxxx-xxc Subscribe Ms-nxxxx-xxe Subscribe Ms-nxxxx-xxg Subscribe Ms-nxxxx-xxh Subscribe Ms-nxxxx-xxt Subscribe Pm3322-e Subscribe Pmc8266-fgpe Subscribe Pmc8266-fpe Subscribe Sc211 Subscribe Sp111 Subscribe Ts2841-x36tpc Subscribe Ts2841-x36tpc/w Subscribe Ts2866-x4tgpc Subscribe Ts2866-x4tpc Subscribe Ts2866-x4tvpc Subscribe Ts2867-x5tpc Subscribe Ts2961-x12tpc Subscribe Ts2966-x12tpe Subscribe Ts2966-x12tvpe Subscribe Ts4441-x36re Subscribe Ts4441-x36rpe Subscribe Ts4466-rfivpg1 Subscribe Ts4466-x4ripg1 Subscribe Ts4466-x4rivpg1 Subscribe Ts4466-x4riwg1 Subscribe Ts4466-x4rpe Subscribe Ts4466-x4rvpe Subscribe Ts4466-x4rwe Subscribe Ts5366-x12pe Subscribe Ts5366-x12ripg1 Subscribe Ts5366-x12vpe Subscribe Ts5510-gh Subscribe Ts5510-gvh Subscribe Ts5511-gvh Subscribe Ts8266-fpc/p Subscribe Ts8266-rfivpg1 Subscribe Ts8266-x4pe Subscribe Ts8266-x4ripg1 Subscribe Ts8266-x4rivpg1 Subscribe Ts8266-x4riwg1 Subscribe Ts8266-x4vpe Subscribe Ts8266-x4we Subscribe

Project Subscriptions

Vendors	Products
Milesight Subscribe	Ms-c2964-rflpc Subscribe Ms-c2966-rflwpc Subscribe Ms-c2966-x12rlpc Subscribe Ms-c2966-x12rlvpc Subscribe Ms-c2972-rflpc Subscribe Ms-c5321-fpe Subscribe Ms-c5361-x12lpc Subscribe Ms-c5366-x12lpc Subscribe Ms-c5366-x12lvpc Subscribe Ms-c8477-hpg1 Subscribe Ms-c8477-pc Subscribe Ms-cqxx31-xxxg1 Subscribe Ms-cqxx68-xxxg1 Subscribe Ms-cqxx72-xxxg1 Subscribe Ms-cxx41-xxxpe Subscribe Ms-cxx52-xxxpe Subscribe Ms-cxx61-xxxpe Subscribe Ms-cxx62-xxxg1 Subscribe Ms-cxx62-xxxpe Subscribe Ms-cxx63-pd Subscribe Ms-cxx64-xpd Subscribe Ms-cxx65-pe Subscribe Ms-cxx66-fipkg1 Subscribe Ms-cxx66-rfipkg1 Subscribe Ms-cxx66-xxxg1 Subscribe Ms-cxx66-xxxgpe Subscribe Ms-cxx66-xxxpe Subscribe Ms-cxx66-xxxxgopc Subscribe Ms-cxx67-xxxpe Subscribe Ms-cxx71-xxxpe Subscribe Ms-cxx72-fipkg1 Subscribe Ms-cxx72-rfipkg1 Subscribe Ms-cxx72-xxxg1 Subscribe Ms-cxx72-xxxpe Subscribe Ms-cxx73-xpd Subscribe Ms-cxx74-pa Subscribe Ms-cxx75-xxpd Subscribe Ms-cxx76-pe Subscribe Ms-cxx83-xpd Subscribe Ms-nxxxx-nxe Subscribe Ms-nxxxx-xxc Subscribe Ms-nxxxx-xxe Subscribe Ms-nxxxx-xxg Subscribe Ms-nxxxx-xxh Subscribe Ms-nxxxx-xxt Subscribe Pm3322-e Subscribe Pmc8266-fgpe Subscribe Pmc8266-fpe Subscribe Sc211 Subscribe Sp111 Subscribe Ts2841-x36tpc Subscribe Ts2841-x36tpc/w Subscribe Ts2866-x4tgpc Subscribe Ts2866-x4tpc Subscribe Ts2866-x4tvpc Subscribe Ts2867-x5tpc Subscribe Ts2961-x12tpc Subscribe Ts2966-x12tpe Subscribe Ts2966-x12tvpe Subscribe Ts4441-x36re Subscribe Ts4441-x36rpe Subscribe Ts4466-rfivpg1 Subscribe Ts4466-x4ripg1 Subscribe Ts4466-x4rivpg1 Subscribe Ts4466-x4riwg1 Subscribe Ts4466-x4rpe Subscribe Ts4466-x4rvpe Subscribe Ts4466-x4rwe Subscribe Ts5366-x12pe Subscribe Ts5366-x12ripg1 Subscribe Ts5366-x12vpe Subscribe Ts5510-gh Subscribe Ts5510-gvh Subscribe Ts5511-gvh Subscribe Ts8266-fpc/p Subscribe Ts8266-rfivpg1 Subscribe Ts8266-x4pe Subscribe Ts8266-x4ripg1 Subscribe Ts8266-x4rivpg1 Subscribe Ts8266-x4riwg1 Subscribe Ts8266-x4vpe Subscribe Ts8266-x4we Subscribe

Advisories

No advisories yet.

Fixes

Solution

Milesight advises all users to update their device to the latest firmware versions of PE/PC/PA found at https://www.milesight.com/support/download/firmware. https://www.milesight.com/support/download/firmware MS-Cxx63-PD: Update to 51.7.0.77-r13 MS-Cxx64-xPD: Update to 51.7.0.77-r13 MS-Cxx73-xPD: Update to 51.7.0.77-r13 MS-Cxx75-xxPD: Update to 51.7.0.77-r13 MS-Cxx83-xPD: Update to 51.7.0.77-r13 MS-Cxx74-PA: Update to 3x.8.0.3-r13 MS-C8477-HPG1: Update to 63.8.0.4-r4 MS-C8477-PC: Update to 48.8.0.4-r4 MS-C5321-FPE: Update to 62.8.0.4-r6 MS-Cxx72-xxxPE: Update to 61.8.0.5-r2 MS-Cxx62-xxxPE: Update to 61.8.0.5-r2 MS-Cxx52-xxxPE: Update to 61.8.0.5-r2 MS-Cxx66-xxxPE: Update to 61.8.0.5-r2 MS-Cxx66-xxxGPE: Update to 61.8.0.5-r2 MS-Cxx61-xxxPE: Update to 61.8.0.5-r2 MS-Cxx67-xxxPE: Update to 61.8.0.5-r2 MS-Cxx71-xxxPE: Update to 61.8.0.5-r2 MS-Cxx41-xxxPE: Update to 61.8.0.5-r2 MS-Cxx76-PE: Update to 61.8.0.5-r2 MS-Cxx65-PE: Update to 61.8.0.5-r2 MS-Cxx66-xxxG1: Update to 63.8.0.5-r4 MS-Cxx62-xxxG1: Update to 63.8.0.5-r4 MS-Cxx72-xxxG1: Update to 63.8.0.5-r4 MS-CQxx31-xxxG1: Update to CQ_63.8.0.5-r2 MS-CQxx68-xxxG1: Update to CQ_63.8.0.5-r2 MS-CQxx72-xxxG1: Update to CQ_63.8.0.5-r2 MS-Nxxxx-NxE: Update to 7x.9.0.19-r6 MS-Nxxxx-xxC: Update to 7x.9.0.19-r6 MS-Nxxxx-xxE: Update to 7x.9.0.19-r6 MS-Nxxxx-xxG: Update to 7x.9.0.19-r6 MS-Nxxxx-xxH: Update to 7x.9.0.19-r6 MS-Nxxxx-xxT: Update to 7x.9.0.19-r6 PMC8266-FPE: Update to PO_61.8.0.4-r1 PMC8266-FGPE: Update to PO_61.8.0.4-r1 PM3322-E: Update to PI_61.8.0.3-r5 TS4466-X4RIPG1: Update to T_63.8.0.4-r4 TS5366-X12RIPG1: Update to T_63.8.0.4-r4 TS8266-X4RIPG1: Update to T_63.8.0.4-r4 TS4466-X4RIVPG1: Update to T_63.8.0.4-r4 TS4466-RFIVPG1: Update to T_63.8.0.4-r4 TS8266-X4RIVPG1: Update to T_63.8.0.4-r4 TS8266-RFIVPG1: Update to T_63.8.0.4-r4 TS4466-X4RIWG1: Update to T_63.8.0.4-r4 TS8266-X4RIWG1: Update to T_63.8.0.4-r4 TS5510-GVH: Update to T_47.8.0.4-r8 TS5510-GH: Update to T_47.8.0.4-r8 TS5511-GVH: Update to T_47.8.0.4-r8 TS2966-X12TPE: Update to T_61.8.0.4-r4 TS4466-X4RPE: Update to T_61.8.0.4-r4 TS5366-X12PE: Update to T_61.8.0.4-r4 TS8266-X4PE: Update to T_61.8.0.4-r4 TS2966-X12TVPE: Update to T_61.8.0.4-r4 TS4466-X4RVPE: Update to T_61.8.0.4-r4 TS5366-X12VPE: Update to T_61.8.0.4-r4 TS8266-X4VPE: Update to T_61.8.0.4-r4 TS4441-X36RPE: Update to T_61.8.0.4-r4 TS4441-X36RE: Update to T_61.8.0.4-r4 TS4466-X4RWE: Update to T_61.8.0.4-r4 TS8266-X4WE: Update to T_61.8.0.4-r4 MS-C2964-RFLPC: Update to T_45.8.0.3-r10 MS-C2972-RFLPC: Update to T_45.8.0.3-r10 MS-C2966-RFLWPC: Update to T_45.8.0.3-r10 TS2866-X4TPC: Update to T_45.8.0.3-r10 TS2866-X4TVPC: Update to T_45.8.0.3-r10 TS2866-X4TGPC: Update to T_45.8.0.3-r10 TS2841-X36TPC: Update to T_45.8.0.3-r10 TS2841-X36TPC/W: Update to T_45.8.0.3-r10 TS2867-X5TPC: Update to T_45.8.0.3-r10 TS2961-X12TPC: Update to T_45.8.0.3-r10 TS8266-FPC/P: Update to T_45.8.0.3-r10 MS-C2966-X12RLPC: Update to T_45.8.0.3-r10 MS-C2966-X12RLVPC: Update to T_45.8.0.3-r10 MS-C5366-X12LPC: Update to T_45.8.0.3-r10 MS-C5366-X12LVPC: Update to T_45.8.0.3-r10 MS-C5361-X12LPC: Update to T_45.8.0.3-r10 MS-Cxx66-xxxxGOPC: Update to 45.8.0.2-AIoT-r5 SC211: Update to C_21.1.0.8-r5 SP111: Update to 52.8.0.4-r6 MS-Cxx66-RFIPKG1: Update to 63.8.0.5-r2-NX MS-Cxx72-RFIPKG1: Update to 63.8.0.5-r2-NX MS-Cxx66-FIPKG1: Update to 63.8.0.5-r2-NX MS-Cxx72-FIPKG1: Update to 63.8.0.5-r2-NX

Workaround

No workaround given by the vendor.

References

Link	Providers
https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-113-03.json
https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-03
https://www.milesight.com/support/download/firmware

History

Tue, 28 Apr 2026 09:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Milesight Milesight ms-c2964-rflpc Milesight ms-c2966-rflwpc Milesight ms-c2966-x12rlpc Milesight ms-c2966-x12rlvpc Milesight ms-c2972-rflpc Milesight ms-c5321-fpe Milesight ms-c5361-x12lpc Milesight ms-c5366-x12lpc Milesight ms-c5366-x12lvpc Milesight ms-c8477-hpg1 Milesight ms-c8477-pc Milesight ms-cqxx31-xxxg1 Milesight ms-cqxx68-xxxg1 Milesight ms-cqxx72-xxxg1 Milesight ms-cxx41-xxxpe Milesight ms-cxx52-xxxpe Milesight ms-cxx61-xxxpe Milesight ms-cxx62-xxxg1 Milesight ms-cxx62-xxxpe Milesight ms-cxx63-pd Milesight ms-cxx64-xpd Milesight ms-cxx65-pe Milesight ms-cxx66-fipkg1 Milesight ms-cxx66-rfipkg1 Milesight ms-cxx66-xxxg1 Milesight ms-cxx66-xxxgpe Milesight ms-cxx66-xxxpe Milesight ms-cxx66-xxxxgopc Milesight ms-cxx67-xxxpe Milesight ms-cxx71-xxxpe Milesight ms-cxx72-fipkg1 Milesight ms-cxx72-rfipkg1 Milesight ms-cxx72-xxxg1 Milesight ms-cxx72-xxxpe Milesight ms-cxx73-xpd Milesight ms-cxx74-pa Milesight ms-cxx75-xxpd Milesight ms-cxx76-pe Milesight ms-cxx83-xpd Milesight ms-nxxxx-nxe Milesight ms-nxxxx-xxc Milesight ms-nxxxx-xxe Milesight ms-nxxxx-xxg Milesight ms-nxxxx-xxh Milesight ms-nxxxx-xxt Milesight pm3322-e Milesight pmc8266-fgpe Milesight pmc8266-fpe Milesight sc211 Milesight sp111 Milesight ts2841-x36tpc Milesight ts2841-x36tpc/w Milesight ts2866-x4tgpc Milesight ts2866-x4tpc Milesight ts2866-x4tvpc Milesight ts2867-x5tpc Milesight ts2961-x12tpc Milesight ts2966-x12tpe Milesight ts2966-x12tvpe Milesight ts4441-x36re Milesight ts4441-x36rpe Milesight ts4466-rfivpg1 Milesight ts4466-x4ripg1 Milesight ts4466-x4rivpg1 Milesight ts4466-x4riwg1 Milesight ts4466-x4rpe Milesight ts4466-x4rvpe Milesight ts4466-x4rwe Milesight ts5366-x12pe Milesight ts5366-x12ripg1 Milesight ts5366-x12vpe Milesight ts5510-gh Milesight ts5510-gvh Milesight ts5511-gvh Milesight ts8266-fpc/p Milesight ts8266-rfivpg1 Milesight ts8266-x4pe Milesight ts8266-x4ripg1 Milesight ts8266-x4rivpg1 Milesight ts8266-x4riwg1 Milesight ts8266-x4vpe Milesight ts8266-x4we
Vendors & Products		Milesight Milesight ms-c2964-rflpc Milesight ms-c2966-rflwpc Milesight ms-c2966-x12rlpc Milesight ms-c2966-x12rlvpc Milesight ms-c2972-rflpc Milesight ms-c5321-fpe Milesight ms-c5361-x12lpc Milesight ms-c5366-x12lpc Milesight ms-c5366-x12lvpc Milesight ms-c8477-hpg1 Milesight ms-c8477-pc Milesight ms-cqxx31-xxxg1 Milesight ms-cqxx68-xxxg1 Milesight ms-cqxx72-xxxg1 Milesight ms-cxx41-xxxpe Milesight ms-cxx52-xxxpe Milesight ms-cxx61-xxxpe Milesight ms-cxx62-xxxg1 Milesight ms-cxx62-xxxpe Milesight ms-cxx63-pd Milesight ms-cxx64-xpd Milesight ms-cxx65-pe Milesight ms-cxx66-fipkg1 Milesight ms-cxx66-rfipkg1 Milesight ms-cxx66-xxxg1 Milesight ms-cxx66-xxxgpe Milesight ms-cxx66-xxxpe Milesight ms-cxx66-xxxxgopc Milesight ms-cxx67-xxxpe Milesight ms-cxx71-xxxpe Milesight ms-cxx72-fipkg1 Milesight ms-cxx72-rfipkg1 Milesight ms-cxx72-xxxg1 Milesight ms-cxx72-xxxpe Milesight ms-cxx73-xpd Milesight ms-cxx74-pa Milesight ms-cxx75-xxpd Milesight ms-cxx76-pe Milesight ms-cxx83-xpd Milesight ms-nxxxx-nxe Milesight ms-nxxxx-xxc Milesight ms-nxxxx-xxe Milesight ms-nxxxx-xxg Milesight ms-nxxxx-xxh Milesight ms-nxxxx-xxt Milesight pm3322-e Milesight pmc8266-fgpe Milesight pmc8266-fpe Milesight sc211 Milesight sp111 Milesight ts2841-x36tpc Milesight ts2841-x36tpc/w Milesight ts2866-x4tgpc Milesight ts2866-x4tpc Milesight ts2866-x4tvpc Milesight ts2867-x5tpc Milesight ts2961-x12tpc Milesight ts2966-x12tpe Milesight ts2966-x12tvpe Milesight ts4441-x36re Milesight ts4441-x36rpe Milesight ts4466-rfivpg1 Milesight ts4466-x4ripg1 Milesight ts4466-x4rivpg1 Milesight ts4466-x4riwg1 Milesight ts4466-x4rpe Milesight ts4466-x4rvpe Milesight ts4466-x4rwe Milesight ts5366-x12pe Milesight ts5366-x12ripg1 Milesight ts5366-x12vpe Milesight ts5510-gh Milesight ts5510-gvh Milesight ts5511-gvh Milesight ts8266-fpc/p Milesight ts8266-rfivpg1 Milesight ts8266-x4pe Milesight ts8266-x4ripg1 Milesight ts8266-x4rivpg1 Milesight ts8266-x4riwg1 Milesight ts8266-x4vpe Milesight ts8266-x4we

Tue, 28 Apr 2026 01:15:00 +0000

Type	Values Removed	Values Added
Description		A command injection vulnerability exists in the web server of specific firmware versions of Milesight cameras.
Title		Milesight Cameras OS Command Injection
Weaknesses		CWE-78
References		https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-113-03.json https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-03 https://www.milesight.com/support/download/firmware
Metrics		cvssV3_1 `{'score': 6.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H'}` cvssV4_0 `{'score': 7.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2026-04-27T23:42:44.761Z

Updated: 2026-04-27T23:42:44.761Z

Reserved: 2026-03-12T17:51:09.881Z

Link: CVE-2026-32649

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-04-28T01:16:00.947

Modified: 2026-04-28T01:16:00.947

Link: CVE-2026-32649

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-28T09:16:42Z

Weaknesses

CWE-78

Attack Vector Network

Attack Complexity Low

Privileges Required High

Attack Requirements Present

User Interaction Passive

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object