Joe Lovett

**Name of the Vulnerable Software and Affected Versions** Milesight UG65-868M-EA gateway (affected versions not specified) **Description** A new issue in the Milesight industrial gateway could potentially impact critical infrastructure. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned in the provided descriptions. **Description** This issue occurs when user-supplied input is improperly sanitized and then reflected back to the user's browser, allowing an attacker to execute arbitrary JavaScript in the context of the victim's browser session. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Software (affected versions not specified) Description: There is a command injection vulnerability that may allow an attacker to inject malicious input on the device's operating system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.