CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2025-6031

unknowncovered by 1 sourcefirst seen 2026-06-05
Scope: Amazon Content Type: Informational Publication Date: 2025/06/12 10:30 AM PDT Description Amazon Cloud Cam is a home security camera that was deprecated on December 2, 2022, is end of life, and is no longer actively supported. When a user powers on the Amazon Cloud Cam, the device attempts to connect to a remote service infrastructure that has been deprecated due to end-of-life status. The device defaults to a pairing status in which an arbitrary user can bypass SSL pinning to associate the device to an arbitrary network, allowing for network traffic interception and modification. Affected version: All

CSIRTS triage

What
The end-of-life Cloud Cam allows insecure device pairing, enabling network traffic interception.
Who is affected
Users of the Amazon Cloud Cam, which is no longer supported.
Urgency
Remediation is important as the device is vulnerable to network attacks.
Action
Discontinue use of the Amazon Cloud Cam.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2025-6031

Get an email if CVE-2025-6031 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (1)

External references

NVD record for CVE-2025-6031

CVE.org record

Embed the live status

CVE-2025-6031 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2025-6031 status](https://www.csirts.com/badge/CVE-2025-6031)](https://www.csirts.com/cve/CVE-2025-6031)