CVE-2025-65857

Description

An issue was discovered in Xiongmai XM530 IP cameras on firmware V5.00.R02.000807D8.10010.346624.S.ONVIF 21.06. The GetStreamUri exposes RTSP URIs containing hardcoded credentials enabling direct unauthorized video stream access.

PUBLISHED Reserved 2025-11-18 | Published 2025-12-22 | Updated 2025-12-22 | Assigner mitre

References

ip.com

hangzhou.com

luismirandaacebedo.github.io/CVE-2025-65857/

cve.org (CVE-2025-65857)

nvd.nist.gov (CVE-2025-65857)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.