CVE-2026-35682

Description

Anviz CX2 Lite is vulnerable to an authenticated command injection via a filename parameter that enables arbitrary command execution (e.g., starting telnetd), resulting in root‑level access.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected products

Anviz / Anviz CX2 Lite FirmwareAll versions – All versions

References

MISChttps://www.anviz.com/contact-us.html
VENDOR_ADVISORYhttps://www.cisa.gov/news-events/ics-advisories/icsa-26-106-03
MISChttps://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-106-03.json