A vulnerability was found in Raisecom MSG1200, MSG2100E,...
Critical severity
Unreviewed
Published
Dec 17, 2024
to the GitHub Advisory Database
•
Updated Dec 18, 2024
Description
Published by the National Vulnerability Database
Dec 17, 2024
Published to the GitHub Advisory Database
Dec 17, 2024
Last updated
Dec 18, 2024
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component affected by this issue is /upload_netaction.php on the web interface. By crafting a suitable form name, arbitrary files can be uploaded, potentially leading to unauthorized access to server permissions.
References