CVE-2025-65856

CRITICAL

Xiongmaitech Xm530v200 X6-weq 8M Firmware - Missing Authentication

Title source: rule

Description

Authentication bypass vulnerability in Xiongmai XM530 IP cameras on Firmware V5.00.R02.000807D8.10010.346624.S.ONVIF 21.06 allows unauthenticated remote attackers to access sensitive device information and live video streams. The ONVIF implementation fails to enforce authentication on 31 critical endpoints, enabling direct unauthorized video stream access.

Exploits (2)

nomisec WRITEUP 2 stars

by LuisMirandaAcebedo · poc

https://github.com/LuisMirandaAcebedo/CVE-2025-65856

View Code ZIP pw:eip

nomisec WORKING POC

by KostasEreksonas · poc

https://github.com/KostasEreksonas/XM_ONVIF_auth_bypass

View Code ZIP pw:eip

References (3)

[Not Applicable] http://hangzhou.com

[Not Applicable] http://ip.com

[Exploit, Third Party Advisory] https://luismirandaacebedo.github.io/CVE-2025-65856/

Scores

CVSS v3 9.8

EPSS 0.0060

EPSS Percentile 69.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-306

Status published

Affected Products (1)

xiongmaitech/xm530v200_x6-weq_8m_firmware

Timeline

Published Dec 22, 2025

Tracked Since Feb 18, 2026