CVE 9.8 CRITICAL

CVE-2025-64055_CVE-2025-64055

December 5, 2025 invoker category_cve

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to access administrative functions of the device (e.g. file upload, firmware update, reboot...) via a crafted authentication bypass.

AI Analysis

Unauthenticated access to administrative functions via crafted authentication bypass

Basic Information

ID CVE-2025-64055

Source mitre

Published Dec 3, 2025 at 00:00

Modified Dec 5, 2025 at 20:08

Affected Product

Vendor Fanvil

Product Fanvil x210

Version 2.12.20

Affected Versions n/a n/a n/a

CWE Classification

CWE-287

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor Fanvil

Product x210

Version 2.12.20

References

{
    "lastseen": "",
    "description": "An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to access administrative functions of the device (e.g. file upload, firmware update, reboot...) via a crafted authentication bypass.",
    "published": "2025-12-03T00:00:00.000Z",
    "modified": "2025-12-05T20:08:06.926Z",
    "type": "cve",
    "title": "CVE-2025-64055",
    "source": "mitre",
    "references": "http://fanvil.com\nhttps://github.com/SpikeReply/advisories/blob/main/cve/fanvil/cve-2025-64055.md",
    "id": "CVE-2025-64055",
    "bulletinFamily": "",
    "cwe": [
        "CWE-287"
    ],
    "cvelist": null,
    "sourceData": "n/a n/a n/a",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Fanvil x210",
    "version": "2.12.20",
    "vendor": "Fanvil",
    "ai_description": "Unauthenticated access to administrative functions via crafted authentication bypass",
    "ai_severity": "Critical",
    "ai_vendor": "Fanvil",
    "ai_product": "x210",
    "ai_version": "2.12.20",
    "ai_score": 9.8
}

💭 Join the Security Discussion ❌ Cancel Reply