Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phicomm vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-27373
Shanghai Feixun Data Communication Technology Co., Ltd router fir302b A2 exists to contain a remote command execution (RCE) vulnerability via the Ping function.
Phicomm Fir303b Firmware -
7.5
CVSSv3
CVE-2022-48073
Phicomm K2G v22.6.3.20 exists to store the root and admin passwords in plaintext.
Phicomm K2 Firmware 22.6.534.263
7.5
CVSSv3
CVE-2022-48071
Phicomm K2 v22.6.534.263 exists to store the root and admin passwords in plaintext.
Phicomm K2 Firmware 22.6.534.263
7.8
CVSSv3
CVE-2022-48072
Phicomm K2G v22.6.3.20 exists to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade function.
Phicomm K2 Firmware 22.6.3.20
7.8
CVSSv3
CVE-2022-48070
Phicomm K2 v22.6.534.263 exists to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade function.
Phicomm K2 Firmware 22.6.534.263
7.8
CVSSv3
CVE-2023-40796
Phicomm k2 v22.6.529.216 exists to contain a command injection vulnerability via the function luci.sys.call.
Phicomm K2 Firmware 22.6.529.216
9.8
CVSSv3
CVE-2017-11495
PHICOMM K2(PSG1218) devices V22.5.11.5 and previous versions allow unauthenticated remote code execution via a request to an unspecified ASP script; alternatively, the attacker can leverage unauthenticated access to this script to trigger a reboot via an ifType=reboot action.
Phicomm K2\\(psg1218\\)-firmware
8.8
CVSSv3
CVE-2019-19117
/usr/lib/lua/luci/controller/admin/autoupgrade.lua on PHICOMM K2(PSG1218) V22.5.9.163 devices allows remote authenticated users to execute any command via shell metacharacters in the cgi-bin/luci autoUpTime parameter.
Phicomm K2\\(psg1218\\) Firmware 22.5.9.163
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2