PatchSiren cyber security CVE debrief
CVE-2026-50245 Brickcom CVE debrief
CVE-2026-50245 is a HIGH severity vulnerability with a CVSS score of 8.3. Brickcom cameras allow unauthenticated access to live snapshot images via the /ONVIF endpoint and no authentication is required to retrieve still images from the camera feed.
- Vendor
- Brickcom
- Product
- Cube
- CVSS
- HIGH 8.3
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-11
- Original CVE updated
- 2026-06-12
- Advisory published
- 2026-06-11
- Advisory updated
- 2026-06-12
Who should care
Users of Brickcom cameras should be aware of this vulnerability and take necessary precautions to mitigate the risk.
Technical summary
The vulnerability exists in Brickcom cameras, allowing unauthenticated access to live snapshot images via the /ONVIF endpoint. No authentication is required to retrieve still images from the camera feed.
Defensive priority
HIGH
Recommended defensive actions
- Users of affected Brickcom cameras should check with the vendor for an official patch or mitigation strategy.
- In the meantime, users can consider restricting access to the /ONVIF endpoint or implementing additional authentication mechanisms.
Evidence notes
The CVE record and NVD detail pages provide additional information about this vulnerability.
Official resources
CVE-2026-50245 was published on 2026-06-11T21:16:22.303Z and modified on 2026-06-12T16:06:47.720Z.