目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

CVE-2026-28747— Milesight AIOT cameras 安全漏洞

CVSS 7.1 · High EPSS 0.02% · P4
获取后续新漏洞提醒登录后订阅

一、 漏洞 CVE-2026-28747 基础信息

漏洞信息
对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗

尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。

Vulnerability Title
Milesight Cameras Authorization Bypass Through User-Controlled Key
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
A weak key generation vulnerability exists in specific firmware versions of Milesight AIOT cameras allows authorization to be bypassed.
来源: 美国国家漏洞数据库 NVD
CVSS Information
CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
通过用户控制密钥绕过授权机制
来源: 美国国家漏洞数据库 NVD
Vulnerability Title
Milesight AIOT cameras 安全漏洞
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Description
Milesight AIOT cameras是中国星纵物联(Milesight)公司的一系列融合人工智能与物联网技术的智能监控摄像设备。 Milesight AIOT cameras存在安全漏洞,该漏洞源于弱密钥生成,可能导致授权绕过。
来源: 中国国家信息安全漏洞库 CNNVD
CVSS Information
N/A
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Type
N/A
来源: 中国国家信息安全漏洞库 CNNVD

受影响产品

厂商产品影响版本CPE订阅
MilesightMS-Cxx63-PD 0 ~ 51.7.0.77-r12 -
MilesightMS-Cxx64-xPD 0 ~ 51.7.0.77-r12 -
MilesightMS-Cxx73-xPD 0 ~ 51.7.0.77-r12 -
MilesightMS-Cxx75-xxPD 0 ~ 51.7.0.77-r12 -
MilesightMS-Cxx83-xPD 0 ~ 51.7.0.77-r12 -
MilesightMS-Cxx74-PA 0 ~ 3x.8.0.3-r11 -
MilesightMS-C8477-HPG1 0 ~ 63.8.0.4-r3 -
MilesightMS-C8477-PC 0 ~ 48.8.0.4-r3 -
MilesightMS-C5321-FPE 0 ~ 62.8.0.4-r5 -
MilesightMS-Cxx72-xxxPE 0 ~ 61.8.0.5-r2 -
MilesightMS-Cxx62-xxxPE 0 ~ 61.8.0.5-r2 -
MilesightMS-Cxx52-xxxPE 0 ~ 61.8.0.5-r2 -
MilesightMS-Cxx66-xxxPE 0 ~ 61.8.0.5-r2 -
MilesightMS-Cxx66-xxxGPE 0 ~ 61.8.0.5-r2 -
MilesightMS-Cxx61-xxxPE 0 ~ 61.8.0.5-r2 -
MilesightMS-Cxx67-xxxPE 0 ~ 61.8.0.5-r2 -
MilesightMS-Cxx71-xxxPE 0 ~ 61.8.0.5-r2 -
MilesightMS-Cxx41-xxxPE 0 ~ 61.8.0.5-r2 -
MilesightMS-Cxx76-PE 0 ~ 61.8.0.5-r2 -
MilesightMS-Cxx65-PE 0 ~ 61.8.0.5-r2 -
MilesightMS-Cxx66-xxxG1 0 ~ 63.8.0.5-r3 -
MilesightMS-Cxx62-xxxG1 0 ~ 63.8.0.5-r3 -
MilesightMS-Cxx72-xxxG1 0 ~ 63.8.0.5-r3 -
MilesightMS-CQxx31-xxxG1 0 ~ CQ_63.8.0.5-r1 -
MilesightMS-CQxx68-xxxG1 0 ~ CQ_63.8.0.5-r1 -
MilesightMS-CQxx72-xxxG1 0 ~ CQ_63.8.0.5-r1 -
MilesightMS-Nxxxx-NxE 0 ~ 7x.9.0.19-r5 -
MilesightMS-Nxxxx-xxC 0 ~ 7x.9.0.19-r5 -
MilesightMS-Nxxxx-xxE 0 ~ 7x.9.0.19-r5 -
MilesightMS-Nxxxx-xxG 0 ~ 7x.9.0.19-r5 -
MilesightMS-Nxxxx-xxH 0 ~ 7x.9.0.19-r5 -
MilesightMS-Nxxxx-xxT 0 ~ 7x.9.0.19-r5 -
MilesightPMC8266-FPE 0 ~ PO_61.8.0.4_LPR -
MilesightPMC8266-FGPE 0 ~ PO_61.8.0.4_LPR -
MilesightPM3322-E 0 ~ PI_61.8.0.3_LPR-r3 -
MilesightTS4466-X4RIPG1 0 ~ T_63.8.0.4_LPR-r3 -
MilesightTS5366-X12RIPG1 0 ~ T_63.8.0.4_LPR-r3 -
MilesightTS8266-X4RIPG1 0 ~ T_63.8.0.4_LPR-r3 -
MilesightTS4466-X4RIVPG1 0 ~ T_63.8.0.4_LPR-r3 -
MilesightTS4466-RFIVPG1 0 ~ T_63.8.0.4_LPR-r3 -
MilesightTS8266-X4RIVPG1 0 ~ T_63.8.0.4_LPR-r3 -
MilesightTS8266-RFIVPG1 0 ~ T_63.8.0.4_LPR-r3 -
MilesightTS4466-X4RIWG1 0 ~ T_63.8.0.4_LPR-r3 -
MilesightTS8266-X4RIWG1 0 ~ T_63.8.0.4_LPR-r3 -
MilesightTS5510-GVH 0 ~ T_47.8.0.4_LPR-r7 -
MilesightTS5510-GH 0 ~ T_47.8.0.4_LPR-r6 -
MilesightTS5511-GVH 0 ~ T_47.8.0.4_LPR-r6 -
MilesightTS2966-X12TPE 0 ~ T_61.8.0.4_LPR-r3 -
MilesightTS4466-X4RPE 0 ~ T_61.8.0.4_LPR-r3 -
MilesightTS5366-X12PE 0 ~ T_61.8.0.4_LPR-r3 -
MilesightTS8266-X4PE 0 ~ T_61.8.0.4_LPR-r3 -
MilesightTS2966-X12TVPE 0 ~ T_61.8.0.4_LPR-r3 -
MilesightTS4466-X4RVPE 0 ~ T_61.8.0.4_LPR-r3 -
MilesightTS5366-X12VPE 0 ~ T_61.8.0.4_LPR-r3 -
MilesightTS8266-X4VPE 0 ~ T_61.8.0.4_LPR-r3 -
MilesightTS4441-X36RPE 0 ~ T_61.8.0.4_LPR-r3 -
MilesightTS4441-X36RE 0 ~ T_61.8.0.4_LPR-r3 -
MilesightTS4466-X4RWE 0 ~ T_61.8.0.4_LPR-r3 -
MilesightTS8266-X4WE 0 ~ T_61.8.0.4_LPR-r3 -
MilesightMS-C2964-RFLPC 0 ~ T_45.8.0.3-r9 -
MilesightMS-C2972-RFLPC 0 ~ T_45.8.0.3-r9 -
MilesightMS-C2966-RFLWPC 0 ~ T_45.8.0.3-r9 -
MilesightTS2866-X4TPC 0 ~ T_45.8.0.3-r9 -
MilesightTS2866-X4TVPC 0 ~ T_45.8.0.3-r9 -
MilesightTS2866-X4TGPC 0 ~ T_45.8.0.3-r9 -
MilesightTS2841-X36TPC 0 ~ T_45.8.0.3-r9 -
MilesightTS2841-X36TPC/W 0 ~ T_45.8.0.3-r9 -
MilesightTS2867-X5TPC 0 ~ T_45.8.0.3-r9 -
MilesightTS2961-X12TPC 0 ~ T_45.8.0.3-r9 -
MilesightTS8266-FPC/P 0 ~ T_45.8.0.3-r9 -
MilesightMS-C2966-X12RLPC 0 ~ T_45.8.0.3-r9 -
MilesightMS-C2966-X12RLVPC 0 ~ T_45.8.0.3-r9 -
MilesightMS-C5366-X12LPC 0 ~ T_45.8.0.3-r9 -
MilesightMS-C5366-X12LVPC 0 ~ T_45.8.0.3-r9 -
MilesightMS-C5361-X12LPC 0 ~ T_45.8.0.3-r9 -
MilesightMS-Cxx66-xxxxGOPC 0 ~ 45.8.0.2-AIoT-r4 -
MilesightSC211 0 ~ C_21.1.0.8-r4 -
MilesightSP111 0 ~ 52.8.0.4-r5 -
MilesightMS-Cxx66-RFIPKG1 0 ~ 63.8.0.4-r1-NX -
MilesightMS-Cxx72-RFIPKG1 0 ~ 63.8.0.4-r1-NX -
MilesightMS-Cxx66-FIPKG1 0 ~ 63.8.0.4-r1-NX -
MilesightMS-Cxx72-FIPKG1 0 ~ 63.8.0.4-r1-NX -

二、漏洞 CVE-2026-28747 的公开POC

#POC 描述源链接神龙链接
AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC

三、漏洞 CVE-2026-28747 的情报信息

Please 登录 to view more intelligence information

同批安全公告 · Milesight · 2026-04-27 · 共 5 条

CVE-2026-326449.8 CRITICALMilesight AIOT cameras 安全漏洞
CVE-2026-277858.8 HIGHMilesight AIOT camera 信任管理问题漏洞
CVE-2026-207668.8 HIGHMilesight AIOT cameras 安全漏洞
CVE-2026-326496.8 MEDIUMMilesight Cameras 操作系统命令注入漏洞

IV. Related Vulnerabilities

Same product: MS-Cxx63-PD
Same vendor: Milesight
Same weakness: CWE-639

V. Comments for CVE-2026-28747

暂无评论

发表评论