Date: 2026-06-02
At Milesight, we take product security seriously. As part of our ongoing commitment to safeguarding users and systems, we continuously monitor for potential vulnerabilities and act swiftly to mitigate risks.
Recent internal security reviews, supplemented by external reports, have identified several vulnerabilities in specific firmware versions of Milesight NVR products.
| Issue | Impact | Related CWE | CVSS Score |
|---|---|---|---|
| A specific firmware version of the Network Video Recorder has a vulnerability that allows an unauthenticated attacker to arbitrarily create user accounts and modify any user's password. | Through interfaces such as challenge and activedevice, an attacker can create new users or reset the password of any arbitrary user without authentication. | https://cwe.mitre.org/data/definitions/306.html https://cwe.mitre.org/data/definitions/285.html https://cwe.mitre.org/data/definitions/640.html | Base score: 9 (CVSS:4.0/AV:N/AC:H/AT:N/PR:N /UI:N/VC:H/VI:L/VA:N/SC:H/SI:L/SA:N) |
| A specific firmware version of the Network Video Recorder has a CGI path misconfiguration vulnerability that leads to arbitrary binary execution. | An attacker can directly execute system commands via web requests. | https://cwe.mitre.org/data/definitions/552.html https://cwe.mitre.org/data/definitions/78.html | Base score: 10 (CVSS:4.0/AV:N/AC:L/AT:N/PR:N /UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H) |
| A specific firmware version of the Network Video Recorder has a command injection vulnerability in the file upload interface. | An attacker can inject shell commands by crafting a special filename, achieving remote code execution. | https://cwe.mitre.org/data/definitions/434.html https://cwe.mitre.org/data/definitions/78.html https://cwe.mitre.org/data/definitions/88.html | Base score: 9.4 (CVSS:4.0/AV:N/AC:L/AT:N/PR:L /UI:N/VC:H/VI:H/VA:L/SC:H/SI:H/SA:L) |
| Product Model | Affected Firmware Version(s) | Fixed Firmware Version | Latest Download Link |
|---|---|---|---|
| MS-Nxxxx-xxH | 71.9.0.19-r8 and prior versions | 71.9.0.19-r9 | https://resource.milesight.com/milesight/security/firmware/MSFImage_71.9.0.19-r9.zip |
| MS-Nxxxx-xxT | 72.9.0.19-r8 and prior versions | 72.9.0.19-r9 | https://resource.milesight.com/milesight/security/firmware/MSFImage_72.9.0.19-r9.zip |
| MS-Nxxxx-xxC | 73.9.0.19-r8 and prior versions | 73.9.0.19-r9 | https://resource.milesight.com/milesight/security/firmware/MSFImage_73.9.0.19-r9.zip |
| MS-Nxxxx-xxE | 75.9.0.19-r8 and prior versions | 75.9.0.19-r9 | https://resource.milesight.com/milesight/security/firmware/MSFImage_75.9.0.19-r9.zip |
| MS-Nxxxx-xxG | 77.9.0.19-r8 and prior versions | 77.9.0.19-r9 | https://resource.milesight.com/milesight/security/firmware/MSFImage_77.9.0.19-r9.zip |
| MS-Nxxxx-NxE | 78.9.0.19-r8 and prior versions | 78.9.0.19-r9 | https://resource.milesight.com/milesight/security/firmware/MSFImage_78.9.0.19-r9.zip |
An updated firmware version has been developed to eliminate this vulnerability. We advise all users to upgrade their devices promptly.
We encourage all users and partners to report potential security vulnerabilities to help us maintain the integrity of Milesight products.
Please submit reports using the following format:
If you are interested in Milesight, please leave us a message.
Contact Us
Contact Us
Contact Us to Get More Information