CVE-2024-55513 | Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 3.90 Web Interface /upload_netaction.php form name unrestricted upload

Posted by Angelo Barbosa | Dec 18, 2024 | CVE

A vulnerability classified as critical was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. This vulnerability affects unknown code of the file /upload_netaction.php of the component Web Interface. The manipulation of the argument form name leads to unrestricted upload.

This vulnerability was named CVE-2024-55513. The attack can be initiated remotely. There is no exploit available.

CVE-2024-55513 | Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 3.90 Web Interface /upload_netaction.php form name unrestricted upload

Related Posts

CVE-2024-35579 | Tenda AX1806 1.0.0.1 formSetIptv iptv.city.vlan stack-based overflow

CVE-2024-24958 | AutomationDirect Productivity 3000 P3-550E 1.2.10.9 FileSystem API out-of-bounds write (icsa-24-144-01)

CVE-2023-50988 | Tenda i29 1.0.0.5 wifiRadioSetIndoor bandwidth buffer overflow

CVE-2024-29435 | Alldata 0.4.6 processId command injection