ГлавнаяУязвимости → CVE-2024-55515
9.8критическая

CVE-2024-55515

Описание

A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component affected by this issue is /upload_ipslib.php on the web interface. By crafting a suitable form name, arbitrary files can be uploaded.

Затрагиваемое ПО
Raisecom Msg2300 firmwareRaisecom Msg2300Raisecom Msg2100e firmwareRaisecom Msg2100eRaisecom Msg2200 firmwareRaisecom Msg2200Raisecom Msg1200 firmwareRaisecom Msg1200
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://gist.github.com/wscg928/cbe88078751abad2ada2334eb12a5060