216.73.216.133

CVE-2025-0836

· Published 16/12/2025 11:15 · Modified 16/12/2025 14:15

Labels: CVE-2025-0836 2025-12-16CVE-2025-0836cf45122d-9d50-442a-9b23-e05cde9943d8

Essential information

Published
16/12/2025 11:15
Modified
16/12/2025 14:15
Author
Creator
CVSS
5.3 MEDIUM (v3) 5.3 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Missing Authorization vulnerability in Milestone Systems XProtect VMS allows users with read-only access to Management Server to have full read/write access to MIP Webhooks API.

NVD status

Status
Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
cf45122d-9d50-442a-9b23-e05cde9943d8
NVD
View on NVD

References