Vulnerabilities > Milesight > Milesightvpn > High

DATE CVE VULNERABILITY TITLE RISK
2023-07-06 CVE-2023-22371 OS Command Injection vulnerability in Milesight Milesightvpn 2.0.2
An os command injection vulnerability exists in the liburvpn.so create_private_key functionality of Milesight VPN v2.0.2.
network
high complexity
milesight CWE-78
8.1
8.1
2023-07-06 CVE-2023-23907 Path Traversal vulnerability in Milesight Milesightvpn 2.0.2
A directory traversal vulnerability exists in the server.js start functionality of Milesight VPN v2.0.2.
network
low complexity
milesight CWE-22
7.5
7.5