Naxclow Ix Cam vulnerabilities
7 known vulnerabilities affecting naxclow/ix_cam.
Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH3MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2026-28742P2CRITICALCVSS 9.8vAll2026-06-12
CVE-2026-28742 [CRITICAL] CWE-321 CVE-2026-28742: Naxclow devices use a uniform request-signing scheme based on a hard-coded, platform-wide salt embed
Naxclow devices use a uniform request-signing scheme based on a hard-coded, platform-wide salt embedded in every firmware image. Once this salt is recovered from any device, an attacker can generate valid signatures for arbitrary device or account operations due to the absence of per-device keys, server-side nonce tracking, or replay protections.
nvd
CVE-2026-42947P2HIGHCVSS 8.8vAll2026-06-12
CVE-2026-42947 [HIGH] CWE-639 CVE-2026-42947: A flaw in Naxclow's platform’s onboarding workflow allows an attacker to replay a confirm-then-bind
A flaw in Naxclow's platform’s onboarding workflow allows an attacker to replay a confirm-then-bind sequence to silently reassign a device to an arbitrary account. Because the affected endpoints validate request signatures but do not confirm legitimate ownership, an attacker with any account can take over a device without user interaction while the dev
nvd
CVE-2026-50101P3HIGHCVSS 8.1vAll2026-06-12
CVE-2026-50101 [HIGH] CWE-262 CVE-2026-50101: Naxclow devices use a server-side, per-device relay credential that never rotates and is re-issued t
Naxclow devices use a server-side, per-device relay credential that never rotates and is re-issued to the device on each boot. Because this credential remains valid indefinitely and cannot be reset or revoked by the legitimate owner, any party that obtains it through any exposure path can maintain persistent access to the device’s relay channel. This
nvd
CVE-2026-50108P3HIGHCVSS 7.5vAll2026-06-12
CVE-2026-50108 [HIGH] CWE-862 CVE-2026-50108: The Naxclow platform API that returns device relay registration details exposes a persistent credent
The Naxclow platform API that returns device relay registration details exposes a persistent credential without verifying that the requester is the legitimate device or owner. An actor able to present a platform-valid request signature can retrieve credentials for arbitrary devices and register on the relay as that device, enabling interception and di
nvd
CVE-2026-50244P4MEDIUMCVSS 5.3vAll2026-06-12
CVE-2026-50244 [MEDIUM] CWE-862 CVE-2026-50244: The Naxclow platform exposes a registration endpoint that accepts signed requests containing a batch
The Naxclow platform exposes a registration endpoint that accepts signed requests containing a batch prefix and an arbitrary caller-supplied account identifier, without validating any ownership relationship. Each call mints a new sequential device identifier and returns the current high-water counter value for the batch, allowing callers to measure
nvd
CVE-2026-50099P4MEDIUMCVSS 4.6vAll2026-06-12
CVE-2026-50099 [MEDIUM] CWE-538 CVE-2026-50099: During WiFi association, Naxclow device firmware prints the host network’s SSID, PSK, and negotiated
During WiFi association, Naxclow device firmware prints the host network’s SSID, PSK, and negotiated WPA keys in cleartext to an exposed UART console on production hardware. The UART pads are labeled, run with default serial settings, and drop to an interactive RT-Thread shell that permits arbitrary memory reads, enabling full firmware extraction. A
nvd
CVE-2026-42932P4MEDIUMCVSS 5.3vAll2026-06-12
CVE-2026-42932 [MEDIUM] CWE-340 CVE-2026-42932: Naxclow device identifiers use fixed manufacturing prefixes combined with sequential counters, produ
Naxclow device identifiers use fixed manufacturing prefixes combined with sequential counters, producing a fully predictable and enumerable identifier space. Because the platform also exposes an endpoint that reveals the current identifier high-water mark, the active fleet can be enumerated.
nvd