CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-25215

Improper access control on the LocalMACConfig.asp interface allows an unauthenticated remote attacker to add (or remove) client MAC addresses to (or from) a list of banned hosts. Clients with those MAC addresses are then prevented from accessing either the WAN or the router itself.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.9%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 5.0

References

Products affected by CVE-2022-25215

Phicomm » K2 » Version: N/A

cpe:2.3:h:phicomm:k2:-
Phicomm » K2g » Version: N/A

cpe:2.3:h:phicomm:k2g:-
Phicomm » K2p » Version: N/A

cpe:2.3:h:phicomm:k2p:-
Phicomm » K3 » Version: N/A

cpe:2.3:h:phicomm:k3:-
Phicomm » K3c » Version: N/A

cpe:2.3:h:phicomm:k3c:-
Phicomm » K2 Firmware » Version: N/A

cpe:2.3:o:phicomm:k2_firmware:-
Phicomm » K2 Firmware » Version: 22.5.9.163

cpe:2.3:o:phicomm:k2_firmware:22.5.9.163
Phicomm » K2g Firmware » Version: N/A

cpe:2.3:o:phicomm:k2g_firmware:-
Phicomm » K2g Firmware » Version: 22.6.3.20

cpe:2.3:o:phicomm:k2g_firmware:22.6.3.20
Phicomm » K2p Firmware » Version: N/A

cpe:2.3:o:phicomm:k2p_firmware:-
Phicomm » K2p Firmware » Version: 20.4.1.7

cpe:2.3:o:phicomm:k2p_firmware:20.4.1.7
Phicomm » K3 Firmware » Version: N/A

cpe:2.3:o:phicomm:k3_firmware:-
Phicomm » K3 Firmware » Version: 21.5.37.246

cpe:2.3:o:phicomm:k3_firmware:21.5.37.246
Phicomm » K3c Firmware » Version: N/A

cpe:2.3:o:phicomm:k3c_firmware:-
Phicomm » K3c Firmware » Version: 32.1.15.93

cpe:2.3:o:phicomm:k3c_firmware:32.1.15.93

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-25215

Products

Pricing

Contact Us