4 matches found
CVE-2021-28485
In Ericsson Mobile Switching Center Server MSC-S before IS 3.1 CP22, the SIS web application allows relative path traversal via a specific parameter in the https request after authentication, which allows access to files on the system that are not intended to be accessible via the web application...
Path traversal
In Ericsson Mobile Switching Center Server MSC-S before IS 3.1 CP22, the SIS web application allows relative path traversal via a specific parameter in the https request after authentication, which allows access to files on the system that are not intended to be accessible via the web application...
CVE-2021-28485
In Ericsson Mobile Switching Center Server MSC-S before IS 3.1 CP22, the SIS web application allows relative path traversal via a specific parameter in the https request after authentication, which allows access to files on the system that are not intended to be accessible via the web application...
CVE-2021-28485
CVE-2021-28485 affects Ericsson MSC-S (Mobile Switching Center Server) via the SIS web application. The issue is a relative path traversal in an authenticated context, triggered by a specific parameter in HTTPS requests, enabling access to system files not intended for web access. Documented affe...