CVE-2025-52599
high-risk
Published 2025-12-26
Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered Inadequate of permission management for camera guest account. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.
Do I need to act?
-
0.01% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
6
CVSS 6.5/10
Medium
NETWORK
/ LOW complexity
Affected Products (20)
Xnv-L6080R Firmware
Xnd-L6080Rva Firmware
Xnd-L6080Va Firmware
Xno-L6080Ra Firmware
Xnv-L6080A Firmware
Xnv-L6080Ra Firmware
Qnp-6320H Firmware
Qnp-6320 Firmware
Qnp-6250H Firmware
Qnp-6250 Firmware
Xnp-6341Rh Firmware
Xno-8082R Firmware
Xnv-8082R Firmware
Xnd-8082Rf Firmware
Xnd-8082Rv Firmware
Xnb-8002 Firmware
Xno-9082Rz Firmware
Xnv-9082R Firmware
Xnd-9082Rf Firmware
Xnd-9082Rv Firmware
Affected Vendors
References (1)
57
/ 100
high-risk
Severity
24/34 · High
Exploitability
0/34 · Minimal
Exposure
33/34 · Critical