Browse all 4 CVE security advisories affecting Fermax. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Fermax specializes in video door entry and access control systems for residential and commercial buildings. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and authentication bypasses. Security researchers have identified multiple instances of hardcoded credentials and insecure default configurations that could allow unauthorized access. While no major public incidents have been widely documented, the presence of four CVEs indicates persistent security concerns in their IoT devices, particularly in web interfaces and mobile companion applications that may expose building systems to remote compromise.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-2911 | Improper Restriction of Excessive Authentication Attempts vulnerability in MeetMe products — MeetMeCWE-307 | 9.1 | - | 2025-03-28 |
| CVE-2025-2910 | User enumeration vulnerability in MeetMe products — MeetMeCWE-204 | 5.3 | - | 2025-03-28 |
| CVE-2025-2909 | Lack of encryption vulnerability in DuoxMe — DuoxMe iOS applicationCWE-312 | 7.5 | - | 2025-03-28 |
| CVE-2025-2908 | Insufficiently Protected Credentials vulnerability in MeetMe products — MeetMeCWE-522 | 7.5 | - | 2025-03-28 |
This page lists every published CVE security advisory associated with Fermax. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.