Primary

Context

Anviz CX7 Firmware Front-Facing Camera Photo Capture Vulnerability

Vulnerability

A vulnerability exists in Anviz CX7 Firmware that allows an unauthenticated POST request to capture a photo using the front-facing camera. This exposure of visual information could reveal sensitive details about the deployment environment.

Impact

Exploitation of this vulnerability could lead to unauthorized capture of images, potentially disclosing critical information about the environment where the device is deployed.

Remediation

Anviz did not respond to CISA's attempts to coordinate these vulnerabilities. Users should contact Anviz for more information through their official contact page.

Added: Apr 17, 2026, 8:27 PM

Updated: Apr 17, 2026, 8:27 PM

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

1.3

exploitability

4.7

remediation

7.9

relevance

6.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

1.3

exploitability

4.7

remediation

7.9

relevance

6.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Anviz CX7 Firmware Front-Facing Camera Photo Capture Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Anviz CrossChex Standard

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating