CVE-2025-66050 – Vivotek IP7137 cameras have a critical authenti... (How to Fix)

Q: What is the severity of CVE-2025-66050?

CVE-2025-66050 has a CVSS score of 9.8 (CRITICAL). Vivotek IP7137 cameras have a critical authentication bypass vulnerability where administrator accounts have no default password requirement. Attackers can gain full administrative control without credentials. All users of Vivotek IP7137 cameras with default configurations are affected.

📋 TL;DR

Vivotek IP7137 cameras have a critical authentication bypass vulnerability where administrator accounts have no default password requirement. Attackers can gain full administrative control without credentials. All users of Vivotek IP7137 cameras with default configurations are affected.

💻 Affected Systems

Products:

Vivotek IP7137 camera

Versions: All firmware versions (specifically confirmed for 0200a, likely all)

Operating Systems: Embedded camera firmware

Default Config Vulnerable: ⚠️ Yes

Notes: Product is End-Of-Life, no official fix expected. Vulnerability exists in default configuration where admin password is not required.

📦 What is this software?

Ip7137 Firmware by Vivotek

View all CVEs affecting Ip7137 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete compromise of camera system allowing attackers to view/record video feeds, modify configurations, install malware, or use camera as pivot point into network

🟠

Likely Case

Unauthorized access to live video feeds, configuration changes, and potential surveillance of private areas

🟢

If Mitigated

Limited impact if strong network segmentation and access controls prevent camera access from untrusted networks

🌐 Internet-Facing: HIGH - Internet-exposed cameras can be directly compromised without authentication

🏢 Internal Only: MEDIUM - Internal attackers or malware could exploit this, but requires network access

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploitation requires only accessing the admin login page without credentials. No special tools or knowledge needed.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: None available

Vendor Advisory: None available

Restart Required: No

Instructions:

No official patch available due to product End-Of-Life status. Vendor has not responded to vulnerability report.

🔧 Temporary Workarounds

Set Administrator Password

all

Manually configure a strong administrator password on all affected cameras

Access camera web interface > System > User Management > Set admin password

Network Segmentation

all

Isolate cameras on separate VLAN with strict firewall rules

🧯 If You Can't Patch

Immediately set strong administrator passwords on all cameras
Remove cameras from internet exposure and place behind VPN or strict firewall

🔍 How to Verify

Check if Vulnerable:

Attempt to access camera web interface admin login without credentials. If access is granted, system is vulnerable.

Check Version:

Check firmware version in camera web interface: System > Information

Verify Fix Applied:

Verify admin password is required for login and cannot be bypassed

📡 Detection & Monitoring

Log Indicators:

Multiple failed login attempts followed by successful admin access without credentials
Admin configuration changes from unexpected IP addresses

Network Indicators:

HTTP requests to camera admin interface without authentication headers
Unusual traffic patterns to camera management ports

SIEM Query:

source="camera_logs" AND (event="admin_login" AND auth_method="none") OR (event="config_change" AND user="admin" AND src_ip NOT IN allowed_ips)

📊 Metadata

CVE ID: CVE-2025-66050

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-1393

EPSS Score: 0.06% exploit probability (18.4th percentile)

Published: January 9, 2026

Last Updated: January 14, 2026

🔗 References

https://cert.pl/posts/2026/01/CVE-2025-66049 Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-66050, you might also want to check these: