Critical Vulnerability in Pelco Sarix Pro 3 IP Cameras Exposes Surveillance Systems to Attacks

Critical Vulnerability Discovered in Pelco Sarix Pro 3 IP Cameras

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory (ICSA-26-057-02) highlighting a critical vulnerability in Pelco, Inc. Sarix Pro 3 Series IP cameras. If exploited, this flaw could enable threat actors to gain unauthorized access to sensitive device data, bypass surveillance controls, and expose facilities to privacy breaches, operational risks, and regulatory compliance violations.

Technical Details

The advisory, published as part of CISA’s Industrial Control Systems (ICS) alerts, does not specify the exact CVE ID or technical root cause of the vulnerability. However, the potential impact includes:

• Unauthorized data access: Attackers may extract sensitive footage or device configurations.
• Surveillance control bypass: Compromised cameras could be disabled or manipulated, undermining physical security.
• Regulatory and operational risks: Facilities relying on these cameras may face compliance violations (e.g., GDPR, HIPAA) and operational disruptions.

For full technical specifications, security professionals can review the CSAF (Common Security Advisory Framework) document.

Impact Analysis

The vulnerability poses significant risks to organizations using Pelco Sarix Pro 3 cameras, particularly in critical infrastructure sectors such as:

• Government facilities (e.g., law enforcement, military bases)
• Healthcare (e.g., hospitals, clinics)
• Industrial environments (e.g., manufacturing plants, utilities)
• Commercial properties (e.g., banks, retail stores)

Successful exploitation could lead to privacy violations, physical security breaches, and cascading operational failures. Given the widespread use of IP cameras in surveillance, this flaw underscores the need for robust network segmentation and access controls in OT environments.

Recommendations

CISA urges affected organizations to take the following actions:

1. Apply patches immediately: Monitor Pelco’s official channels for firmware updates addressing this vulnerability.
2. Isolate vulnerable devices: Restrict network access to Sarix Pro 3 cameras until patches are deployed.
3. Monitor for suspicious activity: Implement intrusion detection systems (IDS) to detect unauthorized access attempts.
4. Review compliance requirements: Ensure surveillance systems adhere to industry-specific regulations (e.g., NIST, ISO 27001).
5. Consult the CSAF document: For technical mitigation strategies, refer to the CSAF advisory.

Organizations are advised to treat this vulnerability as a high-priority security risk and coordinate with their IT and OT teams to implement remediation measures swiftly.