Critical severity9.8NVD Advisory· Published Jul 20, 2017· Updated May 13, 2026

CVE-2017-11495

Description

PHICOMM K2(PSG1218) devices V22.5.11.5 and earlier allow unauthenticated remote code execution via a request to an unspecified ASP script; alternatively, the attacker can leverage unauthenticated access to this script to trigger a reboot via an ifType=reboot action.

Affected products

Phicomm/K2\(psg1218\) Firmware
cpe:2.3:o:phicomm:k2\(psg1218\)-firmware:*:*:*:*:*:*:*:*
Range: <=22.5.11.5

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/ZIllR0/Routers/blob/master/PHICOMMnvdExploitThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000