KMW CCTV Security Cameras

p a href="https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-148-06.json" strong View CSAF /strong /a /p h2 Summary /h2 p strong Successful exploitation of this vulnerability may grant full unauthorized access to camera feeds and settings. /strong /p p The following versions of KMW CCTV Security Cameras are affected: /p ul li KM-IP521 IPCAM_V4.04.91.230307 /li li KM-IP421 IPCAM_V4.04.53.210416 nbsp; /li /ul div class="csaf-table" table class="tablesaw tablesaw-stack" data-tablesaw-mode="stack" data-tablesaw-minimap thead tr th role="columnheader" data-tablesaw-priority="persist" CVSS /th th role="columnheader" Vendor /th th role="columnheader" Equipment /th th role="columnheader" Vulnerabilities /th /tr /thead tbody tr td v3 9.1 /td td KMW /td td KMW CCTV Security Cameras /td td Unverified Password Change /td /tr /tbody /table /div h3 Background /h3 ul li strong Critical Infrastructure Sectors: /strong Commercial Facilities, Government Services and Facilities, Critical Manufacturing, Financial Services, Transportation Systems /li li strong Countries/Areas Deployed: /strong Worldwide /li li strong Company Headquarters Location: /strong Romania /li /ul hr h2 Vulnerabilities /h2 div class="csaf-accordion" p a class="csaf-accordion-toggle-all" href="#" Expand All + /a /p div class="csaf-accordion-item" h3 a class="csaf-accordion-toggle" href="#" CVE-2026-5386 /a /h3 div class="csaf-accordion-content" p The affected product is vulnerable to a critical unauthenticated password reset. This flaw allows an attacker to remotely reset the administrator password to a known value without authentication, granting full access to the camera feeds and settings. /p p a href="https://www.cve.org/CVERecord?id=CVE-2026-5386" View CVE Details /a /p hr h4 Affected Products /h4 h5 KMW CCTV Security Cameras /h5 div class="ics-vendor-version-status" div class="ics-vendor" strong Vendor: /strong br KMW /div div class="ics-version" strong Product Version: /strong br KMW KM-IP521: IPCAM_V4.04.91.230307, KMW KM-IP421: IPCAM_V4.04.53.210416 /div div class="ics-status" strong Product Status: /strong br known_affected /div /div div class="ics-remediations" h6 Remediations /h6 p strong Mitigation /strong br KMW has issued a firmware update to address this vulnerability. The firmware update can be found at https://main.kmw.ro/pub/Firmware/521_421.zip. br a href="https://main.kmw.ro/pub/Firmware/521_421.zip" https://main.kmw.ro/pub/Firmware/521_421.zip /a /p p strong Vendor fix /strong br KM-IP421 - will lose the cloud authorization after this update so users will need to contact customer support to re-authorize the P2P connection. /p p strong Mitigation /strong br KMW recommends connecting surveillance equipment on a separate network, allow only specific devices access to the internet, check for firmware updates regularly, and use cloud connections responsibly. /p p strong Mitigation /strong br If there are any issues customers are encouraged to contact