Improper Access Control in FNKvision FNK-GU2 UART Interface
CVE-2025-7213

5.4MEDIUM

Key Information:

Vendor

Fnkvision

Status
Fnk-gu2
Vendor
CVE Published:
9 July 2025

What is CVE-2025-7213?

A security flaw has been identified in the FNKvision FNK-GU2 device concerning its UART interface, which allows for improper access control to the on-chip debug and test interface. This vulnerability could permit an attacker with physical access to manipulate the device, potentially leading to unauthorized control. Though the complexity of executing such an attack is high, the grounding of the exploit in a publicly disclosed manner raises significant concerns about device security. Users are urged to review their device's firmware version and apply any necessary updates or patches to safeguard against potential exploitation.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

FNK-GU2 40.1.0

FNK-GU2 40.1.1

FNK-GU2 40.1.2

References

https://vuldb.com/?id.315162
vdb-entry
https://vuldb.com/?ctiid.315162
signaturepermissions-required
https://vuldb.com/?submit.608025
third-party-advisory

CVSS V4

Score:
5.4
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Physical
Attack Complexity:
High
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

0xHasta (VulDB User)
JSON
.