CVE Catalog

CVE-2025-64056

MediumCVSS 4.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.21%

11th percentile - higher than 11% of all known CVEs

Summary

A file upload vulnerability in Fanvil x210 V2 version 2.12.20 allows unauthenticated attackers on the local network to store arbitrary files on the filesystem.

Risk Assessment

An attacker can upload malicious files such as backdoors or scripts, potentially leading to device compromise and further attacks on the internal network.

Recommendation

Immediately update the Fanvil x210 V2 firmware to the latest version and restrict device access to trusted networks only.

Original NVD description (English source)

File upload vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store arbitrary files on the filesystem.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS