We would like to make you aware of a vulnerability that affects the Milesight UG65-868M-EA running firmware versions prior to 60.0.0.46 that can allow an admin user to gain unauthorised write access to the /etc/rc.local file on the device, which is executed on a system boot.

Successful exploitation of this vulnerability could allow any users with administrator privileges to inject arbitrary shell command.

Please note that this is only possible if someone already has admin access to the gateway.

We recommend users upgrade the firmware to 60.0.0.46 as soon as possible, which can be downloaded via the Milesight website here:

https://www.milesight.com/iot/resources/download-center/#firmware-ug65

To find out more information about this vulnerability, please visit:

https://www.cisa.gov/news-events/ics-advisories/icsa-25-126-02