CVE-2026-35546

Anviz · CX2 Lite and CX7

Anviz CX2 Lite and CX7 devices are vulnerable to unauthenticated firmware uploads, allowing remote attackers to plant malicious code and obtain a reverse shell.

Executive summary

A critical vulnerability in Anviz CX2 Lite and CX7 devices allows unauthenticated remote attackers to upload and execute malicious firmware, leading to full system compromise.

Vulnerability

The devices lack proper authentication for firmware upload processes, enabling attackers to submit crafted archives. This allows for arbitrary code execution and the establishment of a reverse shell on the affected hardware.

Business impact

A CVSS score of 9.8 reflects the extreme risk posed by this vulnerability, as it allows for persistent, unauthenticated remote code execution. Attackers gaining control over these devices could use them as a foothold for lateral movement within the corporate network, leading to widespread data compromise and operational disruption.

Remediation

Immediate Action: Update the firmware on all Anviz CX2 Lite and CX7 units to the latest version provided by the manufacturer.

Proactive Monitoring: Monitor network traffic for unusual outbound connections originating from these devices, particularly those indicative of reverse shell activity.

Compensating Controls: Isolate the devices within a segmented network and restrict administrative access to the management interfaces to trusted IP addresses only.

Exploitation status

Public Exploit Available: Not specified

Analyst recommendation

This vulnerability represents a total loss of security for the affected devices. It is imperative that security teams verify the firmware version of all deployed Anviz CX2 Lite and CX7 units and apply the necessary updates immediately to prevent unauthorized remote control.