.NET Remoting Endpoints Vulnerability in Milestone XProtect Video Management Software

.NET Remoting Endpoints Vulnerability in Milestone XProtect Video Management Software

CVE-2018-7891 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

The Milestone XProtect Video Management Software (Corporate, Expert, Professional+, Express+, Essential+) 2016 R1 (10.0.a) to 2018 R1 (12.1a) contains .NET Remoting endpoints that are vulnerable to deserialization attacks resulting in remote code execution.

Learn more about our Web Application Penetration Testing UK.