CVE-2024-55515 | Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 3.90 Web Interface /upload_ipslib.php form name unrestricted upload

Posted by Angelo Barbosa | Dec 18, 2024 | CVE

A vulnerability, which was classified as critical, was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. Affected is an unknown function of the file /upload_ipslib.php of the component Web Interface. The manipulation of the argument form name leads to unrestricted upload.

This vulnerability is traded as CVE-2024-55515. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-55515 | Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 3.90 Web Interface /upload_ipslib.php form name unrestricted upload

Related Posts

CVE-2024-9411 | OFCMS 1.1.2 add.json add dict_value cross site scripting (IATECW)

CVE-2024-52597 | Bubka 2FAuth up to 5.4.0 SVG File cross site scripting (GHSA-q5p4-6q4v-gqg3)

CVE-2024-34139 | Adobe Bridge up to 14.0.4/13.0.7/14.1 integer overflow (apsb24-51)

CVE-2024-36935 | Linux Kernel up to 6.8.9 ice memdup_user_nul null termination (5ff4de981983/666854ea9cad)