CVE-2025-7214
BaseFortify
Publication date: 2025-07-09
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| fnkvision | fnk-gu2 | * |
| fnkvision | fnk-gu2 | 40.1.7 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-310 | Cryptographic Issues |
| CWE-327 | The product uses a broken or risky cryptographic algorithm or protocol. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in FNKvision FNK-GU2 up to version 40.1.7 and involves an unknown functionality related to the /etc/shadow file in the MD5 component. The issue leads to the use of a risky cryptographic algorithm. Exploiting this vulnerability requires physical access to the device and is considered difficult due to high attack complexity. The exploit has been publicly disclosed and may be used.
How can this vulnerability impact me? :
The vulnerability could allow an attacker with physical access to the device to exploit weak cryptographic protections related to the /etc/shadow file, potentially compromising sensitive authentication data. However, the attack complexity is high and exploitation is difficult, which may limit the risk.