21 matches found
EUVD-2022-50787
Malicious code in bioql PyPI...
EUVD-2022-50786
Malicious code in bioql PyPI...
CVE-2022-48072
Phicomm K2G v22.6.3.20 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade function...
CVE-2022-48073
Phicomm K2G v22.6.3.20 was discovered to store the root and admin passwords in plaintext...
CVE-2022-48072
Phicomm K2G v22.6.3.20 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade function...
CVE-2022-48073
Phicomm K2G v22.6.3.20 was discovered to store the root and admin passwords in plaintext...
CVE-2022-48073
Phicomm K2G v22.6.3.20 was discovered to store the root and admin passwords in plaintext...
CVE-2022-48072
Phicomm K2G v22.6.3.20 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade function...
Code injection
Phicomm K2G v22.6.3.20 was discovered to store the root and admin passwords in plaintext...
Command injection
Phicomm K2G v22.6.3.20 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade function...
PHICOMM K2G A1 安全漏洞
The PHICOMM K2G A1 is a dual-band Gigabit wireless WiFi router from PHICOMM China. A security vulnerability exists in the PHICOMM K2G A1 version v22.6.534.263, which originates from an attacker being able to discover the passwords of the root and admin users stored in the plaintext...
CVE-2022-48072
Phicomm K2G v22.6.3.20 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade function...
PHICOMM K2G A1 安全漏洞
The PHICOMM K2G A1 is a dual-band Gigabit wireless WiFi router from PHICOMM China. A security vulnerability exists in Phicomm K2 version v22.6.534.263, which stems from the fact that an attacker can discover the passwords of the root and admin users stored in the plaintext...
PHICOMM K2G A1 操作系统命令注入漏洞
The PHICOMM K2G A1 is a dual-band Gigabit wireless WiFi router from PHICOMM, China. A security vulnerability exists in the PHICOMM K2G A1 version v22.6.3.20, which stems from the operation of the autoUpTime parameter of its automatic upgrade feature that allows an attacker to implement command...
CVE-2022-48073
Phicomm K2G v22.6.3.20 was discovered to store the root and admin passwords in plaintext...
CVE-2022-48072
Phicomm K2G v22.6.3.20 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade function...
PHICOMM K2G A1 操作系统命令注入漏洞
The PHICOMM K2G A1 is a dual-band Gigabit wireless WiFi router from PHICOMM, China. A security vulnerability exists in the PHICOMM K2G A1 version v22.6.534.263, which stems from the operation of the autoUpTime parameter of its automatic upgrade feature that allows an attacker to implement command...
CVE-2022-48073
CVE-2022-48073 affects Phicomm K2G v22.6.3.20, where root and admin passwords are stored in plaintext. The vulnerability description and linked references confirm exposure of credentials, leading to confidentiality impact (C:H) with high severity (CVSS v3.1 7.5). The incident stems from plaintext...
CVE-2022-48072
Phicomm K2G v22.6.3.20 is affected by a command injection vulnerability in the automatic upgrade function, exploitable via the autoUpTime parameter. The root cause is improper handling of input in the upgrade process, allowing arbitrary commands to be executed with the device’s privileges. CVSSv3...
Improper access control
Improper access control on the LocalClientList.asp interface allows an unauthenticated remote attacker to obtain sensitive information concerning devices on the local area network, including IP and MAC addresses. Improper access control on the wirelesssetup.asp interface allows an unauthenticated...