Brickcom Cameras

HIGH

CVSS 7.7

Date 2026-06-11T06:00:00+00:00

Source cisa-csaf

Published by CISA

// Description

Successful exploitation of these vulnerabilities could allow a remote unauthenticated attacker to gain unauthorized access to live video feeds, retrieve sensitive visual information from affected premises, and obtain administrative control of the device.

// Vulnerabilities (2)

CVE ID	CVSS Score	Severity	Description
CVE-2026-50005	7.7	high	The affected product ships with default credentials that allows any unauthenticated remote attacker to silently access camera feeds.
CVE-2026-50245	7.7	high	The affected product allows unauthenticated access to live snapshot images via the /ONVIF endpoint and no authentication is required to retrieve still images from the camera feed.

// Remediations (1)

Mitigation: Brickcom did not respond to CISAs request for coordination. Users are encouraged to reach out to Bri

Brickcom did not respond to CISAs request for coordination. Users are encouraged to reach out to Brickcom for support https://www.brickcom.com/case/

Brickcom Cameras

// Description

// Vulnerabilities (2)

// Remediations (1)

// References