CVE-2026-50245

Brickcom cameras allow unauthenticated access to live snapshot images via the /ONVIF endpoint and no authentication is required to retrieve still images from the camera feed...

CVE-2026-50005

Brickcom cameras ship with default credentials that allows any unauthenticated remote attacker to silently access camera feeds...

CVE-2026-50005 Brickcom Cameras Use of Default Credentials

Brickcom cameras ship with default credentials that allows any unauthenticated remote attacker to silently access camera feeds...

CVE-2026-50005

CVE-2026-50005 affects Brickcom cameras that ship with default credentials, enabling any unauthenticated remote attacker to silently access camera feeds. The documented CVSS metrics indicate a HIGH impact with confidentiality and integrity concerns, Local attack vector, and no user interaction re...

CVE-2026-50005 Brickcom Cameras Use of Default Credentials

Brickcom cameras ship with default credentials that allows any unauthenticated remote attacker to silently access camera feeds...

EUVD-2026-36310

Brickcom cameras ship with default credentials that allows any unauthenticated remote attacker to silently access camera feeds...

CVE-2026-50245 Brickcom Cameras Missing Authentication for Critical Function

Brickcom cameras allow unauthenticated access to live snapshot images via the /ONVIF endpoint and no authentication is required to retrieve still images from the camera feed...

CVE-2026-50245

The CVE-2026-50245 entry concerns Brickcom cameras that expose live snapshot images unauthenticated through the ONVIF endpoint. The documented impact notes no authentication is required to retrieve still images from the camera feed, indicating a confidentiality and integrity risk to image data. C...

CVE-2026-50245 Brickcom Cameras Missing Authentication for Critical Function

Brickcom cameras allow unauthenticated access to live snapshot images via the /ONVIF endpoint and no authentication is required to retrieve still images from the camera feed...

Brickcom Cameras

ADVISORY SUMMARY Successful exploitation of these vulnerabilities could allow a remote unauthenticated attacker to gain unauthorized access to live video feeds, retrieve sensitive visual information from affected premises, and obtain administrative control of the device. 2. RECOMMENDED PRACTICES...

PT-2026-48734

Name of the Vulnerable Software and Affected Versions Brickcom cameras affected versions not specified Description These cameras ship with default credentials, which allows an unauthenticated remote attacker to silently access camera feeds. Recommendations Verify and change the default credential...

PT-2026-48735

Name of the Vulnerable Software and Affected Versions Brickcom cameras affected versions not specified Description Unauthenticated access to live snapshot images is possible via the '/ONVIF' endpoint, allowing the retrieval of still images from the camera feed without requiring authentication...

Brickcom多款产品 安全漏洞

Brickcom Cube, among others, are products of the Brickcom company. The Brickcom Cube is a series of indoor network surveillance cameras. The Brickcom Dome is a series of hemispherical network surveillance cameras. The Brickcom Bullet is a series of gun-type network surveillance cameras. Several o...

Brickcom多款产品 访问控制错误漏洞

Brickcom Cube, among others, are products of the Brickcom company. The Brickcom Cube is a series of indoor network surveillance cameras. The Brickcom Dome is a series of hemispherical network surveillance cameras. The Brickcom Bullet is a series of gun-type network surveillance cameras. Several o...

Researchers Warn RondoDox Botnet is Weaponizing Over 50 Flaws Across 30+ Vendors

Malware campaigns distributing the RondoDox botnet have expanded their targeting focus to exploit more than 50 vulnerabilities across over 30 vendors. The activity, described as akin to an "exploit shotgun" approach, has singled out a wide range of internet-exposed infrastructure, including...

EUVD-2013-3623

Malware in sbrugna...

EUVD-2013-3622

Malware in sbrugna...

CVE-2013-3690

Cross-site request forgery CSRF vulnerability in cgi-bin/users.cgi in Brickcom FB-100Ap, WCB-100Ap, MD-100Ap, WFB-100Ap, OB-100Ae, OSD-040E, and possibly other camera models with firmware 3.1.0.8 and earlier, allows remote attackers to hijack the authentication of administrators for requests that...

Weak password vulnerability in Brickcom-MD-300Np-360P

Brickcom Corporation Brickcom is composed of R&D team with rich experience in surveillance industry, and develops digital surveillance products with advanced technology. Including Mega IP Camera, Wireless IP Camera, Video Server, 3G Video Transmission NVR Embedded Network DVR, CMS Client Platform...

Weak Password Vulnerability in Brickcom FB-200Np Camera

BRICS Communications Technology is a leading global provider of network video solutions. A weak password vulnerability exists in the Brickcom FB-200Np camera, which can be exploited by attackers to obtain sensitive information...