CVE Details
Basic Information
| Title | FNKvision FNK-GU2 UART Interface on-chip debug and test interface with improper access control |
|---|---|
| Type | cve |
| Published | 2025-07-09T03:02:05.807Z |
| Modified | 2025-07-09T03:02:05.807Z |
Product Information
| Vendor | FNKvision |
|---|---|
| Product | FNK-GU2 |
| Version | 40.1.0 |
CVSS Information
| Base Score | 5.4 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:P/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P |
Affected Products
- FNKvision FNK-GU2 40.1.0
- FNKvision FNK-GU2 40.1.1
- FNKvision FNK-GU2 40.1.2
- FNKvision FNK-GU2 40.1.3
- FNKvision FNK-GU2 40.1.4
- FNKvision FNK-GU2 40.1.5
- FNKvision FNK-GU2 40.1.6
- FNKvision FNK-GU2 40.1.7
Additional Information
| CWE List | CWE-1191 |
|---|---|
| Source | VulDB |
Description
A vulnerability classified as critical has been found in FNKvision FNK-GU2 up to 40.1.7. Affected is an unknown function of the component UART Interface. The manipulation leads to on-chip debug and test interface with improper access control. It is possible to launch the attack on the physical device. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used.