CVE-2024-55516 | Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 3.90 Web Interface /upload_sysconfig.php form name unrestricted upload

Posted by Angelo Barbosa | Dec 18, 2024 | CVE

A vulnerability has been found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /upload_sysconfig.php of the component Web Interface. The manipulation of the argument form name leads to unrestricted upload.

This vulnerability is known as CVE-2024-55516. The attack can be launched remotely. There is no exploit available.

CVE-2024-55516 | Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 3.90 Web Interface /upload_sysconfig.php form name unrestricted upload

Related Posts

CVE-2024-30405 | Juniper Junos OS up to 23.2R1 on SRX5000 ALG buffer size (JSA79105)

CVE-2023-31024 | NVIDIA DGX A100 prior 00.22.05 Host KVM Daemon stack-based overflow

CVE-2024-34255 | JIZHICMS 2.5.1 Message cross site scripting

CVE-2024-4812 | Red Hat Satellite 6 Katello Plugin Description cross site scripting