top of page
perceptive_background_267k.jpg

The affected KMW CCTV Security Cameras are vulnerable to a critical unauthenticated password reset. This flaw allows an attacker to remotely reset the administr…

Published:

28 mei 2026 om 22:00:00

Alert date:

29 mei 2026 om 19:07:03

Source:

nvd.nist.gov

Click to open the original link from this advisory

Mobile & IoT, Critical Infrastructure

KMW CCTV Security Cameras contain a critical vulnerability allowing unauthenticated password reset. Attackers can remotely reset administrator passwords to known values without authentication. This grants complete access to camera feeds and configuration settings. The vulnerability affects multiple KMW CCTV camera models. Firmware updates and patches are available to address the security flaw.

Technical details

Mitigation steps:

Affected products:

KMW CCTV Security Cameras

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-5386
https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-148-06.json
https://main.kmw.ro/pub/Firmware/521_421.zip
https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-06

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page