PHICOMM K2(PSG1218) devices V22.5.11.5 and earlier allow unauthenticated remote code execution via a request to an unspecified ASP script; alternatively, the attacker can leverage unauthenticated access to this script to trigger a reboot via an ifType=reboot action.
CPE | Name | Operator | Version |
---|---|---|---|
k2\\(psg1218\\)-firmware | le | 22.5.11.5 |