Slican Vulnerabilities
Comprehensive security vulnerability database for Slican products
1
1
1
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2025-14577 | 9.3 | An attacker can remotely run any PHP commands on Slican NCP/IPL/IPM/IPU devices without needing to log in, simply by sending specially crafted requests to a specific endpoint. This critical vulnerability can be exploited by anyone on the internet, making it crucial to update to the latest firmware versions to protect against this risk. | slicanncp firmware | Exploit Available | about 1 month agoFeb 24, 2026 |
About Slican Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Slican products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.