CVE-2017-11495

2022-10-0316:23:03

mitre

www.cve.org

9.8 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.4%

JSON

PHICOMM K2(PSG1218) devices V22.5.11.5 and earlier allow unauthenticated remote code execution via a request to an unspecified ASP script; alternatively, the attacker can leverage unauthenticated access to this script to trigger a reboot via an ifType=reboot action.

References

github.com/ZIllR0/Routers/blob/master/PHICOMM