29 matches found
EUVD-2024-52787
Malicious code in bioql PyPI...
EUVD-2024-48388
Malicious code in bioql PyPI...
Raisecom MSG1200 安全漏洞
The Raisecom MSG1200 is a Gigabit Converged Gateway from Raisecom China. A security vulnerability exists in the Raisecom MSG1200 that stems from an unauthenticated debug port that may allow access to the device file system...
CVE-2024-7470
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. It has been rated as critical. This issue affects the function sslvpnconfigmod of the file /vpn/vpntemplatestyle.php of the component Web Interface. The manipulation of the argument template/stylenum leads to os...
CVE-2024-55515
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component affected by this issue is /uploadipslib.php on the web interface. By crafting a suitable form name, arbitrary files can be uploaded...
CVE-2024-55516
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 v3.90. The component affected by this issue is /uploadsysconfig.php on the web interface. By crafting a suitable form name, arbitrary files can be uploaded, potentially leading to unauthorized access to server permissio...
CVE-2024-55514
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component affected by this issue is /uploadsfmig.php on the web interface. By crafting a suitable form name, arbitrary files can be uploaded, potentially leading to unauthorized access to server permissions...
CVE-2024-7120
A vulnerability, which was classified as critical, was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. This affects an unknown part of the file listbaseconfig.php of the component Web Interface. The manipulation of the argument template leads to os command injection. It is possible...
CVE-2024-55513
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component affected by this issue is /uploadnetaction.php on the web interface. By crafting a suitable form name, arbitrary files can be uploaded, potentially leading to unauthorized access to server permission...
CVE-2024-55516
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 v3.90. The component affected by this issue is /uploadsysconfig.php on the web interface. By crafting a suitable form name, arbitrary files can be uploaded, potentially leading to unauthorized access to server permissio...
CVE-2024-55515
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component affected by this issue is /uploadipslib.php on the web interface. By crafting a suitable form name, arbitrary files can be uploaded...
CVE-2024-55514
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component affected by this issue is /uploadsfmig.php on the web interface. By crafting a suitable form name, arbitrary files can be uploaded, potentially leading to unauthorized access to server permissions...
CVE-2024-55513
CVE-2024-55513 affects Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 (version 3.90). The web interface endpoint /upload_netaction.php allows crafting a form name to upload arbitrary files, potentially leading to unauthorized server access. Reports from multiple sources confirm the same issue; PT-2024...
PT-2024-36539 · Raisecom · Raisecom Msg2200 +3
Name of the Vulnerable Software and Affected Versions: Raisecom MSG1200 version 3.90 Raisecom MSG2100E version 3.90 Raisecom MSG2200 version 3.90 Raisecom MSG2300 version 3.90 Description: A problem exists in the web interface of the affected devices, specifically in the /upload ipslib.php...
CVE-2024-55513
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component affected by this issue is /uploadnetaction.php on the web interface. By crafting a suitable form name, arbitrary files can be uploaded, potentially leading to unauthorized access to server permission...
CVE-2024-55513
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component affected by this issue is /uploadnetaction.php on the web interface. By crafting a suitable form name, arbitrary files can be uploaded, potentially leading to unauthorized access to server permission...
CVE-2024-55515
The CVE-2024-55515 issue affects Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 (version 3.90). The vulnerability resides in the web interface component /upload_ipslib.php, where crafting a specific form name enables arbitrary file upload. This exposes the devices to potential high-impact compro...
PT-2024-36538 · Raisecom · Raisecom Msg2200 +3
Name of the Vulnerable Software and Affected Versions: Raisecom MSG1200 version 3.90 Raisecom MSG2100E version 3.90 Raisecom MSG2200 version 3.90 Raisecom MSG2300 version 3.90 Description: A vulnerability was found in the web interface of Raisecom devices, specifically in the /upload sfmig.php...
CVE-2024-55516
The CVE concerns Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 (v3.90). The web interface vulnerability is in /upload_sysconfig.php where crafting a specific form name allows arbitrary file uploads, potentially granting unauthorized access to server permissions. Public references reiterate the...
CVE-2024-55515
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component affected by this issue is /uploadipslib.php on the web interface. By crafting a suitable form name, arbitrary files can be uploaded...