GCVE - cpe:2.3:h:milesight:ur32:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:milesight:ur32:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Milesight (`29e512ed-02e7-5a62-9acc-b8e7195e4ebe`)
Product	Ur32 (`6e443303-a41f-5b52-ac65-a171c868dd2c`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-43261`	not_vulnerable	2026-06-03 14:52:55.415505	Details available An information disclosure in Milesight UR5X, UR32L, UR32, UR35, UR41 before v35.3.0.7 allows attackers to access sensitive router components. Published: 2023-10-04T00:00:00.000Z Updated: 2025-05-01T17:33:56.413Z Open on db.gcve.eu Reference links http://milesight.com http://ur5x.com https://support.milesight-iot.com/support/home https://github.com/win3zz/CVE-2023-43261 https://medium.com/%40win3zz/inside-the-router-how-i-accessed-industrial-routers-and-reported-the-flaws-29c34213dfdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-43260`	not_vulnerable	2026-06-03 14:52:55.413657	Details available Milesight UR5X, UR32L, UR32, UR35, UR41 before v35.3.0.7 was discovered to contain a cross-site scripting (XSS) vulnerability via the admin panel. Published: 2023-10-05T00:00:00.000Z Updated: 2024-09-19T18:55:46.727Z Open on db.gcve.eu Reference links https://gist.github.com/win3zz/c7eda501edcf5383df32fabe00938d13	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.