Unrated severityNVD Advisory· Published Nov 18, 2019· Updated Aug 5, 2024
CVE-2019-19117
CVE-2019-19117
Description
/usr/lib/lua/luci/controller/admin/autoupgrade.lua on PHICOMM K2(PSG1218) V22.5.9.163 devices allows remote authenticated users to execute any command via shell metacharacters in the cgi-bin/luci autoUpTime parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- PHICOMM/K2description
- Range: = V22.5.9.163
Patches
Vulnerability mechanics
References
1- github.com/decentL/IoT/blob/master/Phicomm/remote-code-execution.mdmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.