5 matches found
CVE-2018-15486
An issue was discovered on KONE Group Controller KGC devices before 4.6.5. Unauthenticated Local File Inclusion and File modification is possible through the open HTTP interface by modifying the name parameter of the file endpoint, aka KONE-02...
CVE-2018-15486
An issue was discovered on KONE Group Controller KGC devices before 4.6.5. Unauthenticated Local File Inclusion and File modification is possible through the open HTTP interface by modifying the name parameter of the file endpoint, aka KONE-02...
CVE-2018-15486
The CVE-2018-15486 entry concerns KONE Group Controller (KGC) devices prior to version 4.6.5. The vulnerability enables Una uthenticated Local File Inclusion and file modification via the open HTTP interface by altering the name parameter of the file endpoint (aka KONE-02). This could impact conf...
KONE KGC 4.6.4 DoS / Code Execution / LFI / Bypass
Vulnerabilities in KONEs Group Controller KGC ------------------------------------------------------------------------- Introduction ============ Vulnerabilities were identified in the KONE Group Controller KGC. These were discovered during a black box assessment and therefore the vulnerability...
KONE KGC 4.6.4 - Multiple Vulnerabilities
KONE KGC versions 4.6.4 and below suffer from unauthenticated remote code execution, denial of service, local file inclusion, and missing FTP access control vulnerabilities. Vulnerabilities in KONEs Group Controller KGC -------------------------------------------------------------------------...