CVE-2026-51597: n/a
MERCURY MIPC252W IP camera version 1.0.5 Build 230306 Rel.79931n lacks nonce expiration in its RTSP Digest authentication mechanism. This flaw allows an adjacent network attacker to capture and replay authentication nonces and responses to bypass authentication without knowing device credentials, gaining unauthorized access to the live video stream.
AI Analysis
Technical Summary
The MERCURY MIPC252W IP camera v1.0.5 Build 230306 Rel.79931n does not implement nonce expiration in RTSP Digest authentication. An attacker on the same network segment can capture a legitimate authentication exchange and replay the nonce and response values in a new connection. This replay attack bypasses authentication controls, granting unauthorized access to the live video stream without requiring the device credentials.
Potential Impact
An adjacent network attacker can bypass authentication on the affected IP camera by replaying captured authentication nonces and responses. This leads to unauthorized access to the live video stream, potentially exposing sensitive surveillance footage.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until a fix is available, restrict network access to trusted users only and isolate the device on a secure network segment to prevent adjacent network attackers from capturing authentication exchanges.
CVE-2026-51597: n/a
Description
MERCURY MIPC252W IP camera version 1.0.5 Build 230306 Rel.79931n lacks nonce expiration in its RTSP Digest authentication mechanism. This flaw allows an adjacent network attacker to capture and replay authentication nonces and responses to bypass authentication without knowing device credentials, gaining unauthorized access to the live video stream.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The MERCURY MIPC252W IP camera v1.0.5 Build 230306 Rel.79931n does not implement nonce expiration in RTSP Digest authentication. An attacker on the same network segment can capture a legitimate authentication exchange and replay the nonce and response values in a new connection. This replay attack bypasses authentication controls, granting unauthorized access to the live video stream without requiring the device credentials.
Potential Impact
An adjacent network attacker can bypass authentication on the affected IP camera by replaying captured authentication nonces and responses. This leads to unauthorized access to the live video stream, potentially exposing sensitive surveillance footage.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until a fix is available, restrict network access to trusted users only and isolate the device on a secure network segment to prevent adjacent network attackers from capturing authentication exchanges.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- mitre
- Date Reserved
- 2026-06-08T00:00:00.000Z
- Cvss Version
- null
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a4fd7da68715ace43c4440d
Added to database: 07/09/2026, 17:18:18 UTC
Last enriched: 07/09/2026, 17:33:00 UTC
Last updated: 07/09/2026, 21:45:21 UTC
Views: 9
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.