PT-2022-24068 · Phicomm · Phicomm Fir300B A2+3
Published
2022-09-07
·
Updated
2022-09-12
·
CVE-2022-37779
CVSS v3.1
7.2
High
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Phicomm FIR151B A2, FIR302E A2, FIR300B A2, FIR303B A2 routers version V3.0.1.17
Description
A remote command execution issue was discovered, allowing exploitation via the
sendnum parameter of the ping function.Recommendations
For Phicomm FIR151B A2, FIR302E A2, FIR300B A2, FIR303B A2 routers version V3.0.1.17, avoid using the
sendnum parameter in the ping function until a fix is available.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Phicomm Fir151B A2
Phicomm Fir300B A2
Phicomm Fir302E A2
Phicomm Fir303B A2