CVE-2026-35061

EPSS 0.3%
Veröffentlicht 17.04.2026 19:19:25
Zuletzt bearbeitet 04.05.2026 14:31:26
Quelle ics-cert@hq.dhs.gov
CVE-Watchlists
Login
Unerledigt
Login

Anviz Products Missing Authorization

Anviz CX7 Firmware is vulnerable to the most recently captured test photo that can be 
retrieved without authentication, revealing sensitive operational 
imagery.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Anviz ≫ Cx7 Firmware Version-

Anviz ≫ Cx7 Version-

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.3%	0.214

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
ics-cert@hq.dhs.gov	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE-862 Missing Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

https://www.anviz.com/contact-us.html

Product

https://www.cisa.gov/news-events/ics-advisories/icsa-26-106-03

US Government Resource

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-106-03.json

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-35061

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-35061

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-35061

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-35061