CVE-2025-64057
- EPSS 0.1%
- Veröffentlicht 05.12.2025 00:00:00
- Zuletzt bearbeitet 09.01.2026 02:18:05
Directory traversal vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store files in arbitrary locations and potentially modify the system configuration or other unspecified impacts.
CVE-2025-64056
- EPSS 0.06%
- Veröffentlicht 05.12.2025 00:00:00
- Zuletzt bearbeitet 09.01.2026 02:18:13
File upload vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store arbitrary files on the filesystem.
CVE-2025-64052
- EPSS 0.08%
- Veröffentlicht 05.12.2025 00:00:00
- Zuletzt bearbeitet 31.12.2025 01:10:32
An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to execute arbitrary system commands.
CVE-2025-64053
- EPSS 0.17%
- Veröffentlicht 05.12.2025 00:00:00
- Zuletzt bearbeitet 09.01.2026 02:17:36
A Buffer overflow vulnerability on Fanvil x210 2.12.20 devices allows attackers to cause a denial of service or potentially execute arbitrary commands via crafted POST request to the /cgi-bin/webconfig?page=upload&action=submit endpoint.
CVE-2025-64054
- EPSS 0.13%
- Veröffentlicht 05.12.2025 00:00:00
- Zuletzt bearbeitet 09.01.2026 02:17:20
A reflected Cross Site Scripting (XSS) vulnerability on Fanvil x210 2.12.20 devices allows attackers to cause a denial of service or potentially execute arbitrary commands via crafted POST request to the /cgi-bin/webconfig?page=upload&action=submit e...
CVE-2025-64055
- EPSS 0.58%
- Veröffentlicht 03.12.2025 00:00:00
- Zuletzt bearbeitet 09.01.2026 02:18:23
An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to access administrative functions of the device (e.g. file upload, firmware update, reboot...) via a crafted authentication bypass.