CVE-2026-35546 | Anviz CX2 Lite and CX7 are vulnerable to unauthenticated fir… | CVSS 9.8 CRITICAL

Description

Anviz CX2 Lite and CX7 are vulnerable to unauthenticated firmware uploads. This causes crafted archives to be accepted, enabling attackers to plant and execute code and obtain a reverse shell.

Metadata

CVE ID: CVE-2026-35546
State: PUBLISHED
Assigner: icscert
Reserved: 2026-04-14 15:47 UTC
Published: 2026-04-17 19:39 UTC
Last updated: 2026-04-17 20:05 UTC
Primary CWE: CWE-306
CWE-306
Vendor / Product: Anviz / Anviz CX7 Firmware
Sources: cve.org · NVD

Severity & Metrics

9.8 CRITICAL CVSS 3.1

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

SSVC — CISA Coordinator

Exploitation: none
Automatable: yes
Tech. Impact: total

Affected products (2)

Vendor	Product	Platform	Versions
Anviz	Anviz CX2 Lite Firmware	—	All versions
Anviz	Anviz CX7 Firmware	—	All versions

Weakness (CWE)

CWE	Source	Description
CWE-306	cna	CWE-306

CVSS scores (1)

Score	Severity	Version	Source	Vector
9.8	CRITICAL	3.1	cna	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References (3)