CVE-2024-55514 | Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 3.90 Web Interface /upload_sfmig.php form name unrestricted upload

Posted by Angelo Barbosa | Dec 18, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. This issue affects some unknown processing of the file /upload_sfmig.php of the component Web Interface. The manipulation of the argument form name leads to unrestricted upload.

The identification of this vulnerability is CVE-2024-55514. The attack may be initiated remotely. There is no exploit available.

CVE-2024-55514 | Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 3.90 Web Interface /upload_sfmig.php form name unrestricted upload

Related Posts

CVE-2024-8332 | master-nan Sweet-CMS up to 5f441e022b8876f07cde709c77b5be6d2f262e3f /table/index sql injection

CVE-2024-48191 | dingfanzu CMS 1.0 doAdminAction.php?act=delAdmin&id=17 cross-site request forgery

CVE-2024-28044 | OpenHarmony up to 4.1.0 integer overflow

CVE-2024-6139 | parisneo lollms up to 9.6 tts_to_file path traversal