New Architecture, New Risks: One-Click to Pwn IDIS IP Cameras

IDIS Cloud Manager's ICM Viewer contains a 1-click remote code execution vulnerability: a local CWGService accepts encrypted WebSocket messages on localhost without origin validation and with a constant key, forwards unsanitized arguments to a Chromium-based viewer, and therefore can be induced (via a malicious webpage) to inject Chromium flags that execute code on the host. The issue was reported to IDIS, confirmed by the vendor, assigned CVE-2025-12556 (CVSS v4 8.7), and customers are advised to upgrade to v1.7.1 or uninstall the viewer.