anviz 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。
過去の問題は主に パス処理の欠陥 and バッファオーバーフロー などに関し、一部は アプリケーションクラッシュ を招き、vendor surface production workloads and vendor surface software deployment 関連の場面に影響します。
掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2026-40461 | Anviz CX2 Lite and CX7 are vulnerable to unauthenticated POST requests that modify debug settings (e.g., enabling SSH), allowing unauthorized state changes that can facilitate later compromise. | [email protected] | 7.5 | 0.03% | 2026-04-17 | 2026-05-04 |
| CVE-2026-40434 | Anviz CrossChex Standard lacks source verification in the client/server channel, enabling TCP packet injection by an attacker on the same network to alter or disrupt application traffic. | [email protected] | 8.1 | 0.02% | 2026-04-17 | 2026-05-04 |
| CVE-2026-40066 | Anviz CX2 Lite and CX7 are vulnerable to unverified update packages that can be uploaded. The device unpacks and executes a script resulting in unauthenticated remote code execution. | [email protected] | 8.8 | 0.03% | 2026-04-17 | 2026-05-04 |
| CVE-2026-35682 | Anviz CX2 Lite is vulnerable to an authenticated command injection via a filename parameter that enables arbitrary command execution (e.g., starting telnetd), resulting in root‑level access. | [email protected] | 8.8 | 0.23% | 2026-04-17 | 2026-05-04 |
| CVE-2026-35546 | Anviz CX2 Lite and CX7 are vulnerable to unauthenticated firmware uploads. This causes crafted archives to be accepted, enabling attackers to plant and execute code and obtain a reverse shell. | [email protected] | 9.8 | 0.06% | 2026-04-17 | 2026-05-04 |
| CVE-2026-35061 | Anviz CX7 Firmware is vulnerable to the most recently captured test photo that can be retrieved without authentication, revealing sensitive operational imagery. | [email protected] | 5.3 | 0.06% | 2026-04-17 | 2026-05-04 |
| CVE-2026-33569 | Anviz CX2 Lite and CX7 administrative sessions occur over HTTP, enabling on‑path attackers to sniff credentials and session data, which can be used to compromise the device. | [email protected] | 6.5 | 0.02% | 2026-04-17 | 2026-05-04 |
| CVE-2026-33093 | Anviz CX7 Firmware is vulnerable to an unauthenticated POST to the device that captures a photo with the front facing camera, exposing visual information about the deployment environment. | [email protected] | 5.3 | 0.03% | 2026-04-17 | 2026-05-04 |
| CVE-2026-32650 | Anviz CrossChex Standard is vulnerable when an attacker manipulates the TDS7 PreLogin to disable encryption, causing database credentials to be sent in plaintext and enabling unauthorized database access. | [email protected] | 7.5 | 0.02% | 2026-04-17 | 2026-05-04 |
| CVE-2026-32648 | Anviz CX2 Lite and CX7 are vulnerable to unauthenticated access that discloses debug configuration details (e.g., SSH/RTTY status), assisting attackers in reconnaissance against the device. | [email protected] | 5.3 | 0.03% | 2026-04-17 | 2026-05-04 |
| CVE-2026-32324 | Anviz CX7 Firmware is vulnerable because the application embeds reusable certificate/key material, enabling decryption of MQTT traffic and potential interaction with device messaging channels at scale. | [email protected] | 7.7 | 0.01% | 2026-04-17 | 2026-05-04 |
| CVE-2026-31927 | Anviz CX7 Firmware is vulnerable to an authenticated CSV upload which allows path traversal to overwrite arbitrary files (e.g., /etc/shadow), enabling unauthorized SSH access when combined with debug‑setting changes | [email protected] | 4.9 | 0.05% | 2026-04-17 | 2026-05-04 |
| CVE-2019-12518 | Anviz CrossChex access control management software 4.3.8.0 and 4.3.12 is vulnerable to a buffer overflow vulnerability. | [email protected] | 9.8 | 74.84% | 2019-12-02 | 2024-11-21 |
| CVE-2019-12394 | Anviz access control devices allow unverified password change which allows remote attackers to change the administrator password without prior authentication. | [email protected] | 9.8 | 0.91% | 2019-12-02 | 2024-11-21 |
| CVE-2019-12393 | Anviz access control devices are vulnerable to replay attacks which could allow attackers to intercept and replay open door requests. | [email protected] | 7.5 | 0.29% | 2019-12-02 | 2024-11-21 |
| CVE-2019-12392 | Anviz access control devices allow remote attackers to issue commands without a password. | [email protected] | 9.8 | 0.71% | 2019-12-02 | 2024-11-21 |
| CVE-2019-12391 | The Anviz Management System for access control has insufficient logging for device events such as door open requests. | [email protected] | 7.5 | 0.34% | 2019-12-02 | 2024-11-21 |
| CVE-2019-12390 | Anviz access control devices expose private Information (pin code and name) by allowing remote attackers to query this information without credentials via port tcp/5010. | [email protected] | 5.3 | 0.42% | 2019-12-02 | 2024-11-21 |
| CVE-2019-12389 | Anviz access control devices expose credentials (names and passwords) by allowing remote attackers to query this information without credentials via port tcp/5010. | [email protected] | 7.5 | 0.54% | 2019-12-02 | 2024-11-21 |
| CVE-2019-12388 | Anviz access control devices perform cleartext transmission of sensitive information (passwords/pins and names) when replying to query on port tcp/5010. | [email protected] | 7.5 | 0.18% | 2019-12-02 | 2024-11-21 |