ThreatCluster

Critical Vulnerability in Xiongmai IP Cameras Allows Remote Access

First seen 24 Apr 2026, 11:51 UTC GbhackersCybersecuritynews 94% similarity 70

Article Content

Browse articles
ThreatCluster

A critical vulnerability has been discovered in Hangzhou Xiongmai Technology’s XM530 IP Cameras, tracked as CVE-2025-65856. This flaw enables attackers to bypass authentication protocols, granting them remote access to the cameras and potentially sensitive information. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an alert on April 23, 2026, highlighting the severity of the issue. The vulnerability affects numerous commercial facilities that utilize these cameras, raising concerns about unauthorized surveillance and data breaches. The flaw was first publicly disclosed in December 2025, with a proof of concept (PoC) released shortly before. Organizations using these cameras are urged to take immediate action to mitigate risks. The scope of the impact is significant, given the widespread deployment of these devices in various sectors.

Key Points: • CVE-2025-65856 allows attackers to bypass authentication on XM530 IP Cameras. • CISA issued an alert on April 23, 2026, emphasizing the critical nature of the vulnerability. • Organizations are advised to take immediate action to secure affected devices.

ThreatCluster AI

Timeline

2025-12-18
First public PoC for CVE-2025-65856 released
2025-12-22
CVE-2025-65856 published
2026-04-23
CISA issued an alert regarding the vulnerability
2026-04-24
Articles published detailing the vulnerability

Community

Browse all →