Vulnerability Description
Slican NCP/IPL/IPM/IPU devices are vulnerable to PHP Function Injection. An unauthenticated remote attacker is able to execute arbitrary PHP commands by sending specially crafted requests to /webcti/session_ajax.php endpoint. This issue was fixed in version 1.24.0190 (Slican NCP) and 6.61.0010 (Slican IPL/IPM/IPU).
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Slican | Ncp Firmware | < 1.24.0190 |
| Slican | Ncp Server Cm300P | - |
| Slican | Ncp Server Cm300P.1Bc | - |
| Slican | Ncp Server Cm400P.1Bc | - |
| Slican | Ncp Server Cm600P.1Bc | - |
| Slican | Ipl-256 Firmware | < 6.61.0010 |
| Slican | Ipl-256.3U | - |
| Slican | Ipl-256.Wm | - |
| Slican | Ipm-032 Firmware | < 6.61.0010 |
| Slican | Ipm-032.2U | - |
| Slican | Ipm-032.Wm | - |
| Slican | Ipu-14 Firmware | < 6.61.0010 |
| Slican | Ipu-14.103.Wm | - |
| Slican | Ipu-14.105.1U | - |
| Slican | Ipu-14.105.Wm | - |
Related Weaknesses (CWE)
References
- https://cert.pl/posts/2026/02/CVE-2025-14577Third Party Advisory
- https://www.slican.pl/oferta/centrale-telefoniczne/Product
FAQ
What is CVE-2025-14577?
CVE-2025-14577 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Slican NCP/IPL/IPM/IPU devices are vulnerable to PHP Function Injection. An unauthenticated remote attacker is able to execute arbitrary PHP commands by sending specially crafted requests to /webcti/s...
How severe is CVE-2025-14577?
CVE-2025-14577 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2025-14577?
Check the references section above for vendor advisories and patch information. Affected products include: Slican Ncp Firmware, Slican Ncp Server Cm300P, Slican Ncp Server Cm300P.1Bc, Slican Ncp Server Cm400P.1Bc, Slican Ncp Server Cm600P.1Bc.