CVE-2026-28747: CWE-639 in Milesight MS-Cxx63-PD
CVE-2026-28747 is a high-severity vulnerability affecting specific firmware versions of the Milesight MS-Cxx63-PD AIOT cameras. It involves a weak key generation flaw that allows an attacker to bypass authorization mechanisms. The vulnerability is identified as CWE-639, which relates to authorization bypass due to improper key management. There is no official patch or remediation level currently available, and no known exploits have been reported in the wild. The vulnerability requires high attack complexity and privileges but can be triggered with user interaction. The affected product is not a cloud service, so remediation depends on vendor firmware updates.
AI Analysis
Technical Summary
This vulnerability in Milesight MS-Cxx63-PD AIOT cameras arises from weak key generation in certain firmware versions, enabling bypass of authorization controls. Classified under CWE-639, it compromises the integrity of the authorization process. The CVSS 4.0 base score is 7.3, reflecting high severity with attack vector as adjacent network, high attack complexity, and partial privileges required. The vulnerability is published and assigned CVE-2026-28747 but lacks an official fix or patch at this time.
Potential Impact
Successful exploitation of this vulnerability could allow an attacker to bypass authorization on affected Milesight AIOT cameras, potentially gaining unauthorized access or control. The high CVSS score indicates significant security impact, but no active exploitation has been reported. The vulnerability affects device security posture by weakening authentication mechanisms.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since no official fix or patch is currently available, users should monitor vendor communications for updates. Until a patch is released, restrict network access to the affected devices and apply compensating controls to limit exposure.
CVE-2026-28747: CWE-639 in Milesight MS-Cxx63-PD
Description
CVE-2026-28747 is a high-severity vulnerability affecting specific firmware versions of the Milesight MS-Cxx63-PD AIOT cameras. It involves a weak key generation flaw that allows an attacker to bypass authorization mechanisms. The vulnerability is identified as CWE-639, which relates to authorization bypass due to improper key management. There is no official patch or remediation level currently available, and no known exploits have been reported in the wild. The vulnerability requires high attack complexity and privileges but can be triggered with user interaction. The affected product is not a cloud service, so remediation depends on vendor firmware updates.
CVSS v4.0
Score 7.3high
Affected software
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability in Milesight MS-Cxx63-PD AIOT cameras arises from weak key generation in certain firmware versions, enabling bypass of authorization controls. Classified under CWE-639, it compromises the integrity of the authorization process. The CVSS 4.0 base score is 7.3, reflecting high severity with attack vector as adjacent network, high attack complexity, and partial privileges required. The vulnerability is published and assigned CVE-2026-28747 but lacks an official fix or patch at this time.
Potential Impact
Successful exploitation of this vulnerability could allow an attacker to bypass authorization on affected Milesight AIOT cameras, potentially gaining unauthorized access or control. The high CVSS score indicates significant security impact, but no active exploitation has been reported. The vulnerability affects device security posture by weakening authentication mechanisms.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since no official fix or patch is currently available, users should monitor vendor communications for updates. Until a patch is released, restrict network access to the affected devices and apply compensating controls to limit exposure.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- icscert
- Date Reserved
- 2026-03-12T17:51:09.913Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69efec8cd3d5ab91023ba5ef
Added to database: 4/27/2026, 11:09:00 PM
Last enriched: 5/5/2026, 7:32:45 AM
Last updated: 6/12/2026, 12:21:26 PM
Views: 74
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.