CVE-2026-35546
Anviz · CX2 Lite and CX7
Anviz CX2 Lite and CX7 devices are vulnerable to unauthenticated firmware uploads, allowing remote attackers to plant malicious code and obtain a reverse shell.
Executive summary
A critical vulnerability in Anviz CX2 Lite and CX7 devices allows unauthenticated remote attackers to upload and execute malicious firmware, leading to full system compromise.
Vulnerability
The devices lack proper authentication for firmware upload processes, enabling attackers to submit crafted archives. This allows for arbitrary code execution and the establishment of a reverse shell on the affected hardware.
Business impact
A CVSS score of 9.8 reflects the extreme risk posed by this vulnerability, as it allows for persistent, unauthenticated remote code execution. Attackers gaining control over these devices could use them as a foothold for lateral movement within the corporate network, leading to widespread data compromise and operational disruption.
Remediation
Immediate Action: Update the firmware on all Anviz CX2 Lite and CX7 units to the latest version provided by the manufacturer.
Proactive Monitoring: Monitor network traffic for unusual outbound connections originating from these devices, particularly those indicative of reverse shell activity.
Compensating Controls: Isolate the devices within a segmented network and restrict administrative access to the management interfaces to trusted IP addresses only.
Exploitation status
Public Exploit Available: Not specified
Analyst recommendation
This vulnerability represents a total loss of security for the affected devices. It is imperative that security teams verify the firmware version of all deployed Anviz CX2 Lite and CX7 units and apply the necessary updates immediately to prevent unauthorized remote control.