CVE-2019-19117

Published: 2019-11-18T22:15Z

Last Modified: 2024-11-21T04:34Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

/usr/lib/lua/luci/controller/admin/autoupgrade.lua on PHICOMM K2(PSG1218) V22.5.9.163 devices allows remote authenticated users to execute any command via shell metacharacters in the cgi-bin/luci autoUpTime parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt