CVE•Published 2025-12-22•Modified 2026-07-05•1 article on news•7 live references•NVD data
CVE-2025-65856Xiongmaitech · Xm530v200_x6-weq_8m_firmware
Vulnerability data via NVD (ingested)
CVSS v3.1
9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS percentile
54
Exploit Prediction Scoring System · top 46% of all CVEs
Weaknesses (CWE)
Description
Authentication bypass vulnerability in Xiongmai XM530 IP cameras on Firmware V5.00.R02.000807D8.10010.346624.S.ONVIF 21.06 allows unauthenticated remote attackers to access sensitive device information and live video streams. The ONVIF implementation fails to enforce authentication on 31 critical endpoints, enabling direct unauthorized video stream access.
Timeline
Published 2025-12-22
Modified 2026-07-05
External references
Search for exposed instances
Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).
Shodan · vuln tag0 hosts
vuln:CVE-2025-65856Hosts Shodan has explicitly fingerprinted as vulnerable.
Shodan · OS
os:"Xm530v200 X6-weq 8m Firmware"Hosts Shodan identified as running Xm530v200 X6-weq 8m Firmware.
More intel sources (5)
Shodan report
vuln:CVE-2025-65856Country / ASN / product breakdown for the vuln query.
Censys
vulnerabilities.cve_id: CVE-2025-65856Censys host search filtered to this CVE id.
grep.app
CVE-2025-65856Public source-code mentions — fast PoC discovery.
GitHub code
CVE-2025-65856GitHub code search for direct mentions.
Google dork
"CVE-2025-65856" exploit -site:nvd.nist.govWrite-ups and news, NVD excluded.
Known PoCs on GitHub (5)
CVE-2025-658565 repos
KostasEreksonas/Besder-6024PB-XMA501-ip-camera-security-investigationLua
Security investigation of Besder 6024PB-XMA501 IP camera.
hiifong/starListPython
Export your star's repository list
LuisMirandaAcebedo/CVE-2025-65856unknown
Xiongmai XM530 IP Camera ONVIF Complete Authentication Bypass
LuisMirandaAcebedo/CVE-2025-65857unknown
Xiongmai XM530 IP Camera Hardcoded RTSP Credentials Exposure
KostasEreksonas/XM_ONVIF_auth_bypassPython
Proof-of-concept code (Bash and Python) for CVE-2025-65856 where ONVIF implementation in in Xiongmai XM530 IP cameras allows for unauthenticated access to sensitive device informa…