Shodan
Vulnerabilities
Vulnerable Software
Phicomm:  Security Vulnerabilities
CVE-2023-40796
Phicomm k2 v22.6.529.216 was discovered to contain a command injection vulnerability via the function luci.sys.call.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-08-25
CVE-2022-48070
Phicomm K2 v22.6.534.263 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade function.
CVSS Score
7.8
EPSS Score
0.002
Published
2023-01-27
CVE-2022-48071
Phicomm K2 v22.6.534.263 was discovered to store the root and admin passwords in plaintext.
CVSS Score
7.5
EPSS Score
0.0
Published
2023-01-27
CVE-2022-48072
Phicomm K2G v22.6.3.20 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade function.
CVSS Score
7.8
EPSS Score
0.002
Published
2023-01-27
CVE-2022-48073
Phicomm K2G v22.6.3.20 was discovered to store the root and admin passwords in plaintext.
CVSS Score
7.5
EPSS Score
0.0
Published
2023-01-27
CVE-2022-37777
Phicomm FIR151B A2, FIR302E A2, FIR300B A2, FIR303B A2 routers 3.0.1.17 and earlier were discovered to contain a remote command execution (RCE) vulnerability via the trHops parameter of the tracert function.
CVSS Score
7.2
EPSS Score
0.015
Published
2022-09-08
CVE-2022-37778
Phicomm FIR151B A2, FIR302E A2, FIR300B A2, FIR303B A2 routers V3.0.1.17 were discovered to contain a remote command execution (RCE) vulnerability via the current_time parameter of the time function.
CVSS Score
7.2
EPSS Score
0.015
Published
2022-09-08
CVE-2022-37779
Phicomm FIR151B A2, FIR302E A2, FIR300B A2, FIR303B A2 routers V3.0.1.17 were discovered to contain a remote command execution (RCE) vulnerability via the sendnum parameter of the ping function.
CVSS Score
7.2
EPSS Score
0.015
Published
2022-09-08
CVE-2022-37780
Phicomm FIR151B A2, FIR302E A2, FIR300B A2, FIR303B A2 routers V3.0.1.17 were discovered to contain a remote command execution (RCE) vulnerability via the pingAddr parameter of the tracert function.
CVSS Score
7.2
EPSS Score
0.015
Published
2022-09-07
CVE-2022-27373
Shanghai Feixun Data Communication Technology Co., Ltd router fir302b A2 was discovered to contain a remote command execution (RCE) vulnerability via the Ping function.
CVSS Score
8.8
EPSS Score
0.252
Published
2022-07-19


Products
Pricing
Contact Us

Shodan ® - All rights reserved