TROYANOSYVIRUS
Voltar para CVEs

CVE-2025-64056

MEDIUM
4.3

Descricao

File upload vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store arbitrary files on the filesystem.

Detalhes CVE

Pontuacao CVSS v3.14.3
SeveridadeMEDIUM
Vetor CVSSCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Vetor de ataqueADJACENT_NETWORK
ComplexidadeLOW
Privilegios necessariosNONE
Interacao do usuarioNONE
Publicado12/5/2025
Ultima modificacao1/9/2026
Fontenvd
Avistamentos honeypot0

Produtos afetados

fanvil:x210fanvil:x210_firmware

Fraquezas (CWE)

CWE-306

Referencias

http://fanvil.com(cve@mitre.org)
https://github.com/SpikeReply/advisories/blob/main/cve/fanvil/cve-2025-64056.md(cve@mitre.org)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.