Anviz Management System — known CVE vulnerabilities
Every CVE whose affected-product data names Anviz Management System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2019-12394 — CVSS 9.8 (critical): Anviz access control devices allow unverified password change which allows remote attackers to change the administrator password without…
CVE-2019-12391 — CVSS 7.5 (high): The Anviz Management System for access control has insufficient logging for device events such as door open requests.
CVE-2019-12393 — CVSS 7.5 (high): Anviz access control devices are vulnerable to replay attacks which could allow attackers to intercept and replay open door requests.