CVE-2026-31256
published 2026-04-27CVE-2026-31256: A null pointer dereference vulnerability exists in the RTSP service of the MERCURY MIPC252W 1.0.5 Build 230306 Rel.79931n. During the processing of a SETUP…
PriorityP342high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
0.41%
32.5th percentile
A null pointer dereference vulnerability exists in the RTSP service of the MERCURY MIPC252W 1.0.5 Build 230306 Rel.79931n. During the processing of a SETUP request for the path rtsp://:554/stream1/track2, the device fails to properly validate the Transport header field. When this header is improperly constructed, the RTSP service can dereference a NULL pointer during request parsing. Successful exploitation causes the device to crash and automatically reboot.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mercurycom | mipc252w_firmware | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-jhq8-6g6m-wm24: A null pointer dereference vulnerability exists in the RTSP service of the MERCURY MIPC252W 1
ghsa_unreviewed·2026-04-27
CVE-2026-31256 [HIGH] CWE-476 GHSA-jhq8-6g6m-wm24: A null pointer dereference vulnerability exists in the RTSP service of the MERCURY MIPC252W 1
A null pointer dereference vulnerability exists in the RTSP service of the MERCURY MIPC252W 1.0.5 Build 230306 Rel.79931n. During the processing of a SETUP request for the path rtsp://:554/stream1/track2, the device fails to properly validate the Transport header field. When this header is improperly constructed, the RTSP service can dereference a NULL pointer during request parsing. Successful exploitation causes the device to crash and automatically reboot.
VulDB
Mercury MIPC252W 1.0.5 Build 230306 Rel.79931n RTSP Service Transport null pointer dereference
vuldb·2026-04-27
CVE-2026-31256 [LOW] Mercury MIPC252W 1.0.5 Build 230306 Rel.79931n RTSP Service Transport null pointer dereference
A vulnerability marked as problematic has been reported in Mercury MIPC252W 1.0.5 Build 230306 Rel.79931n. This affects an unknown part of the component RTSP Service. The manipulation of the argument Transport leads to null pointer dereference.
This vulnerability is uniquely identified as CVE-2026-31256. The attack is possible to be carried out remotely. No exploit exists.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-04-27
Published