logo_clicknbuy.png

CVE-2025-9381 – FNKvision Y215 CCTV Camera File Disclosure Vulnerability

The following table lists the changes that have been made to the
CVE-2025-9381 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution
of a vulnerability, and for identifying the most recent changes that may
impact the vulnerability’s severity, exploitability, or other characteristics.

  • New CVE Received
    by [email protected]

    Aug. 24, 2025

    Action Type Old Value New Value
    Added Description A security flaw has been discovered in FNKvision Y215 CCTV Camera 10.194.120.40. This affects an unknown part of the file /tmp/wpa_supplicant.conf. Performing manipulation results in information disclosure. The attack may be carried out on the physical device. The attack’s complexity is rated as high. It is indicated that the exploitability is difficult. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
    Added CVSS V4.0 AV:P/AC:H/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
    Added CVSS V3.1 AV:P/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:N
    Added CVSS V2 (AV:L/AC:H/Au:M/C:P/I:N/A:N)
    Added CWE CWE-200
    Added CWE CWE-284
    Added Reference https://vorachat.somsuay.com/blog/Hacking%20CCTV%20FNKvision%20-%20Y215
    Added Reference https://vorachat.somsuay.com/blog/Hacking%20CCTV%20FNKvision%20-%20Y215/#vulnerability-2-ssid-and-wi-fi-password-stored-in-plaintext
    Added Reference https://vuldb.com/?ctiid.321214
    Added Reference https://vuldb.com/?id.321214
    Added Reference https://vuldb.com/?submit.629811
Share the Post:

Related Posts