CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-63296

KERUI K259 5MP Wi-Fi / Tuya Smart Security Camera firmware v33.53.87 contains a code execution vulnerability in its boot/update logic: during startup /usr/sbin/anyka_service.sh scans mounted TF/SD cards and, if /mnt/update.nor.sh is present, copies it to /tmp/net.sh and executes it as root.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 25.5%

CVSS Severity

CVSS v3 Score 6.5

References

https://gist.github.com/t4e-3/082cdd0b7ee6b650c7aaae97fd4e016c
https://github.com/t4e-3/CVE-2025-63296

Products affected by CVE-2025-63296

Keruistore » Kerui K259 » Version: N/A

cpe:2.3:h:keruistore:kerui_k259:-
Keruistore » Kerui K259 Firmware » Version: 33.53.87

cpe:2.3:o:keruistore:kerui_k259_firmware:33.53.87

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-63296

Products

Pricing

Contact Us