EUVD-2025-201427

An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to execute arbitrary system commands...

CVE-2025-64056

File upload vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store arbitrary files on the filesystem...

PT-2025-49254

A reflected Cross Site Scripting XSS vulnerability on Fanvil x210 2.12.20 devices allows attackers to cause a denial of service or potentially execute arbitrary commands via crafted POST request to the /cgi-bin/webconfig?page=upload&action=submit endpoint...

CVE-2025-64056

File upload vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store arbitrary files on the filesystem...

Fanvil x210 安全漏洞

Fanvil x210 is an IP telephony device from Fanvil. A security vulnerability exists in the Fanvil x210 version 2.12.20, which originates from reflective cross-site scripting and could result in a denial of service or execution of arbitrary commands...

Fanvil x210 安全漏洞

The Fanvil x210 is an IP telephony device from Fanvil. A security vulnerability exists in Fanvil x210 V2 version 2.12.20, which originates from an unauthenticated attacker on the local network who can execute arbitrary system commands...

PT-2025-49253

Name of the Vulnerable Software and Affected Versions Fanvil x210 version 2.12.20 Description A buffer overflow exists on Fanvil x210 devices. An attacker can send a crafted POST request to the /cgi-bin/webconfig?page=upload&action=submit endpoint, potentially leading to a denial of service or...

CVE-2025-64057

Fanvil x210 V2 (version 2.12.20) is affected by a directory traversal vulnerability that allows an unauthenticated attacker on the local network to store files in arbitrary locations and potentially modify system configuration. The Red Hat/ENISA/CNNVD entries corroborate the same description. The...

Fanvil x210 安全漏洞

The Fanvil x210 is an IP telephony device from Fanvil. A security vulnerability exists in Fanvil x210 V2 version 2.12.20, which originates from an unauthenticated attacker on the local network who can bypass access to device management features via specially crafted authentication...

Debian: Security Advisory (DSA-2944-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...