Phicomm k2 v22.6.529.216 was discovered to contain a command injection vulnerability via the function luci.sys.call.

Phicomm K2G v22.6.3.20 was discovered to store the root and admin passwords in plaintext.

Phicomm K2G v22.6.3.20 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic u

Phicomm K2 v22.6.534.263 was discovered to store the root and admin passwords in plaintext.

Phicomm K2 v22.6.534.263 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic

A null byte interaction error has been discovered in the code that the telnetd_startup daemon uses to construct a pair of ephemera

The use of the RSA algorithm without OAEP, or any other padding scheme, in telnetd_startup, allows an unauthenticated attacker on

Use of a hard-coded cryptographic key pair by the telnetd_startup service allows an attacker on the local area network to obtain a

Improper access control on the LocalMACConfig.asp interface allows an unauthenticated remote attacker to add (or remove) client MA

Improper access control on the LocalClientList.asp interface allows an unauthenticated remote attacker to obtain sensitive informa

Improper physical access control and use of hard-coded credentials in /etc/passwd permits an attacker with physical access to obta