9.8 High
AI Score
Confidence
High
0.025 Low
EPSS
Percentile
90.2%
An issue was discovered on KONE Group Controller (KGC) devices before 4.6.5. Unauthenticated Remote Code Execution is possible through the open HTTP interface by modifying autoexec.bat, aka KONE-01.
packetstormsecurity.com/files/149252/KONE-KGC-4.6.4-DoS-Code-Execution-LFI-Bypass.html
www.kone.com/en/vulnerability.aspx