2025-12-17 Daily Vulns
NEW:
| CVE | vendor-product | description | metric | Referenceurl | title | GithubURL | |
|---|---|---|---|---|---|---|---|
| CVE-2025-0836 | Milestone Systems - XProtect VMS | Missing Authorization vulnerability in Milestone Systems XProtect VMS allows users with read-only access to Management Server to have full read/write access to MIP Webhooks API. | CVSS4.0: 5.3 - MEDIUM CVSS3.1: 6.3 - MEDIUM | 0 1 | Exploitation: noneAutomatable: noTechnical Impact: partial | XProtect MIP API Missing Authorization | github |
This post is licensed under CC BY 4.0 by the author.