CVE-2026-32644

Description

Specific firmware versions of Milesight AIOT cameras use SSL certificates with default private keys.

CVSS Metrics

• v4.0•CRITICAL•Score: 9.2CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
• v4.0•CRITICAL•Score: 9.2CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
• v3.1•CRITICAL•Score: 9.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Techniques & Countermeasures

• CWE-321•Use of Hard-coded Cryptographic Key

  The product uses a hard-coded, unchangeable cryptographic key.

Affected Systems

• milesight•ms-c2964-rflpc

  ≤ T_45.8.0.3-r9

• milesight•ms-c2966-rflwpc

  ≤ T_45.8.0.3-r9

• milesight•ms-c2966-x12rlpc

  ≤ T_45.8.0.3-r9

• milesight•ms-c2966-x12rlvpc

  ≤ T_45.8.0.3-r9

• milesight•ms-c2972-rflpc

  ≤ T_45.8.0.3-r9

• milesight•ms-c5321-fpe

  ≤ 62.8.0.4-r5

• milesight•ms-c5361-x12lpc

  ≤ T_45.8.0.3-r9

• milesight•ms-c5366-x12lpc

  ≤ T_45.8.0.3-r9

• milesight•ms-c5366-x12lvpc

  ≤ T_45.8.0.3-r9

• milesight•ms-c8477-hpg1

  ≤ 63.8.0.4-r3

• milesight•ms-c8477-pc

  ≤ 48.8.0.4-r3

• milesight•ms-cqxx31-xxxg1

  ≤ CQ_63.8.0.5-r1

• milesight•ms-cqxx68-xxxg1

  ≤ CQ_63.8.0.5-r1

• milesight•ms-cqxx72-xxxg1

  ≤ CQ_63.8.0.5-r1

• milesight•ms-cxx41-xxxpe

  ≤ 61.8.0.5-r2

• milesight•ms-cxx52-xxxpe

  ≤ 61.8.0.5-r2

• milesight•ms-cxx61-xxxpe

  ≤ 61.8.0.5-r2

• milesight•ms-cxx62-xxxg1

  ≤ 63.8.0.5-r3

• milesight•ms-cxx62-xxxpe

  ≤ 61.8.0.5-r2

• milesight•ms-cxx63-pd

  ≤ 51.7.0.77-r12

• milesight•ms-cxx64-xpd

  ≤ 51.7.0.77-r12

• milesight•ms-cxx65-pe

  ≤ 61.8.0.5-r2

• milesight•ms-cxx66-fipkg1

  ≤ 63.8.0.4-r1-NX

• milesight•ms-cxx66-rfipkg1

  ≤ 63.8.0.4-r1-NX

• milesight•ms-cxx66-xxxg1

  ≤ 63.8.0.5-r3

• milesight•ms-cxx66-xxxgpe

  ≤ 61.8.0.5-r2

• milesight•ms-cxx66-xxxpe

  ≤ 61.8.0.5-r2

• milesight•ms-cxx66-xxxxgopc

  ≤ 45.8.0.2-AIoT-r4

• milesight•ms-cxx67-xxxpe

  ≤ 61.8.0.5-r2

• milesight•ms-cxx71-xxxpe

  ≤ 61.8.0.5-r2

• milesight•ms-cxx72-fipkg1

  ≤ 63.8.0.4-r1-NX

• milesight•ms-cxx72-rfipkg1

  ≤ 63.8.0.4-r1-NX

• milesight•ms-cxx72-xxxg1

  ≤ 63.8.0.5-r3

• milesight•ms-cxx72-xxxpe

  ≤ 61.8.0.5-r2

• milesight•ms-cxx73-xpd

  ≤ 51.7.0.77-r12

• milesight•ms-cxx74-pa

  ≤ 3x.8.0.3-r11

• milesight•ms-cxx75-xxpd

  ≤ 51.7.0.77-r12

• milesight•ms-cxx76-pe

  ≤ 61.8.0.5-r2

• milesight•ms-cxx83-xpd

  ≤ 51.7.0.77-r12

• milesight•ms-nxxxx-nxe

  ≤ 7x.9.0.19-r5

• milesight•ms-nxxxx-xxc

  ≤ 7x.9.0.19-r5

• milesight•ms-nxxxx-xxe

  ≤ 7x.9.0.19-r5

• milesight•ms-nxxxx-xxg

  ≤ 7x.9.0.19-r5

• milesight•ms-nxxxx-xxh

  ≤ 7x.9.0.19-r5

• milesight•ms-nxxxx-xxt

  ≤ 7x.9.0.19-r5

• milesight•pm3322-e

  ≤ PI_61.8.0.3_LPR-r3

• milesight•pmc8266-fgpe

  ≤ PO_61.8.0.4_LPR

• milesight•pmc8266-fpe

  ≤ PO_61.8.0.4_LPR

• milesight•sc211

  ≤ C_21.1.0.8-r4

• milesight•sp111

  ≤ 52.8.0.4-r5

Showing first 50 affected entries in server-rendered view.

References (3)

• https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-03
• https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-113-03.json
• https://www.milesight.com/support/download/firmware