HIGHCVE-2026-20766Published Modified CNA icscert
CVE-2026-20766: Milesight Cameras Heap-based Buffer Overflow
An out-of-bounds memory access vulnerability exists in specific firmware versions of Milesight AIOT cameras.
Metrics
- CVSS v4.0
- 8.6
- Severity
- HIGH
- Fixed in
- —
- Affected Products
- 82
Affected packages
- Milesight / MS-Cxx63-PD≤ 51.7.0.77-r12
- Milesight / MS-Cxx64-xPD≤ 51.7.0.77-r12
- Milesight / MS-Cxx73-xPD≤ 51.7.0.77-r12
- Milesight / MS-Cxx75-xxPD≤ 51.7.0.77-r12
- Milesight / MS-Cxx83-xPD≤ 51.7.0.77-r12
- Milesight / MS-Cxx74-PA≤ 3x.8.0.3-r11
- Milesight / MS-C8477-HPG1≤ 63.8.0.4-r3
- Milesight / MS-C8477-PC≤ 48.8.0.4-r3
- Milesight / MS-C5321-FPE≤ 62.8.0.4-r5
- Milesight / MS-Cxx72-xxxPE≤ 61.8.0.5-r2
- Milesight / MS-Cxx62-xxxPE≤ 61.8.0.5-r2
- Milesight / MS-Cxx52-xxxPE≤ 61.8.0.5-r2
- Milesight / MS-Cxx66-xxxPE≤ 61.8.0.5-r2
- Milesight / MS-Cxx66-xxxGPE≤ 61.8.0.5-r2
- Milesight / MS-Cxx61-xxxPE≤ 61.8.0.5-r2
- Milesight / MS-Cxx67-xxxPE≤ 61.8.0.5-r2
- Milesight / MS-Cxx71-xxxPE≤ 61.8.0.5-r2
- Milesight / MS-Cxx41-xxxPE≤ 61.8.0.5-r2
- Milesight / MS-Cxx76-PE≤ 61.8.0.5-r2
- Milesight / MS-Cxx65-PE≤ 61.8.0.5-r2
- Milesight / MS-Cxx66-xxxG1≤ 63.8.0.5-r3
- Milesight / MS-Cxx62-xxxG1≤ 63.8.0.5-r3
- Milesight / MS-Cxx72-xxxG1≤ 63.8.0.5-r3
- Milesight / MS-CQxx31-xxxG1≤ CQ_63.8.0.5-r1
- Milesight / MS-CQxx68-xxxG1≤ CQ_63.8.0.5-r1
- Milesight / MS-CQxx72-xxxG1≤ CQ_63.8.0.5-r1
- Milesight / MS-Nxxxx-NxE≤ 7x.9.0.19-r5
- Milesight / MS-Nxxxx-xxC≤ 7x.9.0.19-r5
- Milesight / MS-Nxxxx-xxE≤ 7x.9.0.19-r5
- Milesight / MS-Nxxxx-xxG≤ 7x.9.0.19-r5
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:NReferences