2 matches found
CVE-2022-48071
Summary: CVE-2022-48071 affects Phicomm K2 firmware (v22.6.534.263) where root and admin passwords are stored in plaintext, enabling potential credential disclosure. Impact: Based on the linked metrics, CVSS v3.1 base score is 7.5 (HIGH) with network attack vector and no user interaction. Details...
CVE-2022-48070
Phicomm K2 devices (v22.6.534.263) are affected by CVE-2022-48070, a command‑injection vulnerability in the automatic upgrade function exposed via the autoUpTime parameter. The issue is rooted in the upgrade mechanism allowing arbitrary command execution with local attacker access and low privile...