CVE-2024-50559 | Siemens RUGGEDCOM RM1224 LTE(4G) EU up to 8.1 path traversal (ssa-354112)

A vulnerability, which was classified as critical, was found in Siemens RUGGEDCOM RM1224 LTE(4G) EU, RUGGEDCOM RM1224 LTE(4G) NAM, SCALANCE M804PB, SCALANCE M812-1 ADSL-Router, SCALANCE M816-1 ADSL-Router, SCALANCE M826-2 SHDSL-Router, SCALANCE M874-2, SCALANCE M874-3, SCALANCE M874-3 3G-Router (CN), SCALANCE M876-3, SCALANCE M876-3 (ROK), SCALANCE M876-4, SCALANCE M876-4 (EU), SCALANCE M876-4 (NAM), SCALANCE MUM853-1 (A1), SCALANCE MUM853-1 (B1), SCALANCE MUM853-1 (EU), SCALANCE MUM856-1 (A1), SCALANCE MUM856-1 (B1), SCALANCE MUM856-1 (CN), SCALANCE MUM856-1 (EU), SCALANCE MUM856-1 (RoW), SCALANCE S615 EEC LAN-Router and SCALANCE S615 LAN-Router up to 8.1. Affected is an unknown function. The manipulation leads to path traversal.

This vulnerability is traded as CVE-2024-50559. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-50559 | Siemens RUGGEDCOM RM1224 LTE(4G) EU up to 8.1 path traversal (ssa-354112)

Post correlati

CVE-2024-30305 | Adobe Acrobat Reader up to 20.005.30539/23.008.20470 use after free (apsb24-07)

CVE-2023-4932 | SAS Integration Technologies up to 9.4_M8 URL /SASStoredProcess/do _program cross site scripting

CVE-2024-7510 | Trimble SketchUp 13.0.4124 SKP File Parser use after free (ZDI-24-1056)

CVE-2024-45254 | VaeMendis Ubooquity up to 2.1.4 cross site scripting