CVE-2025-7213
BaseFortify
Publication date: 2025-07-09
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| fnkvision | fnk-gu2 | 40.1.7 |
| yoosee | application | 6.32.4 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-1191 | The chip does not implement or does not correctly perform access control to check whether users are authorized to access internal registers and test modes through the physical debug/test interface. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a critical security flaw in the FNKvision FNK-GU2 device up to version 40.1.7, specifically in an unknown function of the UART Interface component. It allows improper access control to the on-chip debug and test interface, which can be exploited physically on the device. The attack is complex and difficult to execute, but the exploit has been publicly disclosed.
How can this vulnerability impact me? :
The vulnerability can lead to unauthorized access to the device's on-chip debug and test interface, potentially allowing attackers to manipulate or extract sensitive information or disrupt device functionality. Since the attack requires physical access and is complex, the risk is somewhat mitigated, but exploitation could compromise device security and integrity.