Strix
26.1K

CVE-2022-25214

HIGHCVSS 7.4/10EPSS 1.47%

Last modified

CVE-2022-25214 is a high-severity vulnerability rated 7.4/10 on the CVSS scale. Improper access control on the LocalClientList.asp interface allows an unauthenticated remote attacker to obtain sensitive information concerning devices on the local area network, including IP and MAC addresses. Improper access control on the wirelesssetup.asp interface allows an unauthenticated remote attacker to obtain the WPA passphrases for the 2.4GHz and 5.0GHz wireless networks. EPSS estimates a 1.47% chance of exploitation in the next 30 days.

Description

Improper access control on the LocalClientList.asp interface allows an unauthenticated remote attacker to obtain sensitive information concerning devices on the local area network, including IP and MAC addresses. Improper access control on the wirelesssetup.asp interface allows an unauthenticated remote attacker to obtain the WPA passphrases for the 2.4GHz and 5.0GHz wireless networks. This is particularly dangerous given that the K2G setup wizard presents the user with the option of using the same password for the 2.4Ghz network and the administrative interface, by clicking a checkbox. When Remote Managment is enabled, these endpoints are exposed to the WAN.

Metrics

CVSS 3.1
7.4/10

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

EPSS Probability
1.47%

70.5th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersions
PhicommK2 Firmware<= 22.5.9.163
PhicommK3 Firmware<= 21.5.37.246
PhicommK3c Firmware<= 32.1.15.93
PhicommK2g Firmware<= 22.6.3.20
PhicommK2p Firmware<= 20.4.1.7

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2022-25214?
Improper access control on the LocalClientList.asp interface allows an unauthenticated remote attacker to obtain sensitive information concerning devices on the local area network, including IP and MAC addresses. Improper access control on the wirelesssetup.asp interface allows an unauthenticated remote attacker to obtain the WPA passphrases for the 2.4GHz and 5.0GHz wireless networks. This is particularly dangerous given that the K2G setup wizard presents the user with the option of using the same password for the 2.4Ghz network and the administrative interface, by clicking a checkbox. When Remote Managment is enabled, these endpoints are exposed to the WAN.
How severe is CVE-2022-25214?
CVE-2022-25214 has a CVSS score of 7.4/10 (HIGH severity). The EPSS model estimates a 1.47% probability of exploitation in the next 30 days.
How do I fix CVE-2022-25214?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2022-25214?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST