Vulnerabilities > Phicomm > K2 Firmware > 22.6.534.263

DATE CVE VULNERABILITY TITLE RISK
2023-01-27 CVE-2022-48070 OS Command Injection vulnerability in Phicomm K2 Firmware 22.6.534.263
Phicomm K2 v22.6.534.263 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade function.
local
low complexity
phicomm CWE-78
7.8
7.8
2023-01-27 CVE-2022-48071 Cleartext Storage of Sensitive Information vulnerability in Phicomm K2 Firmware 22.6.534.263
Phicomm K2 v22.6.534.263 was discovered to store the root and admin passwords in plaintext.
network
low complexity
phicomm CWE-312
7.5
7.5
2023-01-27 CVE-2022-48073 Cleartext Storage of Sensitive Information vulnerability in Phicomm K2 Firmware 22.6.534.263
Phicomm K2G v22.6.3.20 was discovered to store the root and admin passwords in plaintext.
network
low complexity
phicomm CWE-312
7.5
7.5