CVE-2025-52598 — LOW (3.7) — White Hats Nepal

Q: How severe is CVE-2025-52598?

CVE-2025-52598 has been rated LOW with a CVSS base score of 3.7/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-52598?

Check the references section above for vendor advisories and patch information. Affected products include: Hanwhavision Xno-9082Rz Firmware, Hanwhavision Xno-9082Rz, Hanwhavision Xnv-9082R Firmware, Hanwhavision Xnv-9082R, Hanwhavision Xnd-9082Rf Firmware.

Vulnerability Description

Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has found a flaw that camera's client service does not perform certificate validation. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.

CVSS Score

3.7

LOW

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

LOW

Affected Products

Vendor	Product	Versions
Hanwhavision	Xno-9082Rz Firmware	< 2.24.00
Hanwhavision	Xno-9082Rz	-
Hanwhavision	Xnv-9082R Firmware	< 2.24.00
Hanwhavision	Xnv-9082R	-
Hanwhavision	Xnd-9082Rf Firmware	< 2.24.00
Hanwhavision	Xnd-9082Rf	-
Hanwhavision	Xnd-9082Rv Firmware	< 2.24.00
Hanwhavision	Xnd-9082Rv	-
Hanwhavision	Xnb-9002 Firmware	< 2.24.00
Hanwhavision	Xnb-9002	-
Hanwhavision	Xnf-9010Rv Firmware	< 2.24.00
Hanwhavision	Xnf-9010Rv	-
Hanwhavision	Xnf-9010Rs Firmware	< 2.24.00
Hanwhavision	Xnf-9010Rs	-
Hanwhavision	Xnf-9010Rvm Firmware	< 2.24.00
Hanwhavision	Xnf-9010Rvm	-
Hanwhavision	Xnd-C7083Rv Firmware	< 2.24.00
Hanwhavision	Xnd-C7083Rv	-
Hanwhavision	Xno-C7083R Firmware	< 2.24.00
Hanwhavision	Xno-C7083R	-

Related Weaknesses (CWE)

CWE-295

References

https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-RepVendor Advisory

FAQ

What is CVE-2025-52598?

CVE-2025-52598 is a vulnerability with a CVSS score of 3.7 (LOW). Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has found a flaw that camera's client service does not perform certi...

How severe is CVE-2025-52598?

CVE-2025-52598 has been rated LOW with a CVSS base score of 3.7/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-52598?

Check the references section above for vendor advisories and patch information. Affected products include: Hanwhavision Xno-9082Rz Firmware, Hanwhavision Xno-9082Rz, Hanwhavision Xnv-9082R Firmware, Hanwhavision Xnv-9082R, Hanwhavision Xnd-9082Rf Firmware.