Luis Miranda Acebedo

#11540of 53,635
23.9Total CVSS
Vulnerabilities · 3
Medium
1
High
1
Critical
1
PT-2025-52686
9.8
2025-12-22
Xiongmai · Xiongmai Xm530 · CVE-2025-65856
**Name of the Vulnerable Software and Affected Versions** Xiongmai XM530 IP cameras version V5.00.R02.000807D8.10010.346624.S.ONVIF 21.06 **Description** An authentication bypass issue exists in Xiongmai XM530 IP cameras. This allows unauthenticated remote attackers to access sensitive device information and live video streams. The ONVIF implementation does not enforce authentication on 31 critical endpoints, enabling direct unauthorized video stream access. **Recommendations** Update Xiongmai XM530 IP cameras to a version that addresses this authentication bypass. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2025-52721
7.5
2025-12-22
Xiongmai · Xiongmai Xm530 Ip Cameras · CVE-2025-65857
**Name of the Vulnerable Software and Affected Versions** Xiongmai XM530 IP cameras version V5.00.R02.000807D8.10010.346624.S.ONVIF 21.06 **Description** The `GetStreamUri` function exposes RTSP URIs that include hardcoded credentials, allowing unauthorized access to direct video streams. The affected device is an IP camera. **Recommendations** Update to a newer firmware version that addresses this issue. As a temporary workaround, restrict network access to the camera to trusted networks only.
PT-2025-51840
6.6
2025-12-17
Netun Solutions · Helpflash Iot · CVE-2025-65855
**Name of the Vulnerable Software and Affected Versions** Netun Solutions HelpFlash IoT version v18 178 221102 ASCII PRO 1R5 50 **Description** The over-the-air (OTA) firmware update process in the software does not properly authenticate update servers or validate firmware signatures, and relies on hard-coded WiFi credentials that are consistent across all devices. An attacker with temporary physical access can initiate the OTA update mode by pressing a button for eight seconds. This allows the attacker to establish a malicious WiFi access point using the known credentials and deliver harmful firmware through unauthenticated HTTP, potentially leading to arbitrary code execution on the device. The device is a safety-critical emergency signaling device. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.