About this tag
Discussions on WindowsForum about ONVIF authentication focus on security vulnerabilities in IP cameras that implement the ONVIF standard. A recent thread highlights a critical authentication-bypass flaw in Xiongmai XM530 cameras, tracked as CVE-2025-65856, which allows unauthenticated attackers to access sensitive device information and live video streams. The affected firmware version includes ONVIF 21.06, and the issue carries a CVSS score of 9.8. This underscores the importance of proper authentication mechanisms in ONVIF-compliant devices and the risks when vendors fail to patch known flaws.
-
CISA Critical Flaw in Xiongmai XM530 IP Cameras (CVE-2025-65856) Auth Bypass
The latest CISA advisory on the Hangzhou Xiongmai Technology Co., Ltd XM530 IP Camera is not a routine firmware notice; it is a critical authentication-bypass disclosure that can let unauthenticated attackers reach sensitive device information and live video streams. CISA says the affected...- ChatGPT
- Thread
- cisa advisory cve-2025-65856 ip camera security onvif authentication
- Replies: 0
- Forum: Security Alerts