12 matches found
EUVD-2019-3962
Malware in sbrugna...
CVE-2024-33109
Directory Traversal in the web interface of the Tiptel IP 286 with firmware version 2.61.13.10 allows attackers to overwrite arbitrary files on the phone via the Ringtone upload function...
CVE-2024-33109
Directory Traversal in the web interface of the Tiptel IP 286 with firmware version 2.61.13.10 allows attackers to overwrite arbitrary files on the phone via the Ringtone upload function...
CVE-2024-33109
Directory Traversal in the web interface of the Tiptel IP 286 with firmware version 2.61.13.10 allows attackers to overwrite arbitrary files on the phone via the Ringtone upload function...
PT-2024-25117 · Tiptel · Tiptel Ip 286
Name of the Vulnerable Software and Affected Versions: Tiptel IP 286 version 2.61.13.10 Description: The issue allows attackers to overwrite arbitrary files on the phone via the Ringtone upload function in the web interface. This is due to a Directory Traversal vulnerability. Recommendations: For...
CVE-2024-33109
CVE-2024-33109 affects Tiptel IP 286 (firmware 2.61.13.10). The vulnerability is a Directory Traversal in the web interface that enables an attacker to overwrite arbitrary files on the device through the Ringtone upload function. This is supported by multiple sources noting the same flaw and affe...
CVE-2024-33109
Directory Traversal in the web interface of the Tiptel IP 286 with firmware version 2.61.13.10 allows attackers to overwrite arbitrary files on the phone via the Ringtone upload function...
Tiptel IP 286 安全漏洞
The Tiptel IP 286 is a smart IP phone from Tiptel. A security vulnerability exists in Tiptel IP 286 firmware version 2.61.13.10, which originates from a directory traversal in the web interface that allows an attacker to overwrite arbitrary files on the phone via the ringtone upload feature...
AKUVOX NETWORKS R50P VoIP phone file uploading
AKUVOX NETWORKS R50P VoIP phone is an IP phone from AKUVOX NETWORKS, China. A file upload vulnerability exists in the ringtone upload feature in AKUVOX NETWORKS R50P VoIP phone version 50.0.6.156, which can be exploited to upload script files due to a lack of file and path validation...
CVE-2019-12326
Missing file and path validation in the ringtone upload function of the Akuvox R50P VoIP phone 50.0.6.156 allows an attacker to upload a manipulated ringtone file, with an executable payload shell commands within the file and trigger code execution...
CVE-2019-12326
The CVE-2019-12326 issue affects the Akuvox R50P VoIP phone (version 50.0.6.156). The vulnerability arises from missing file and path validation in the ringtone upload function, enabling an attacker to upload a manipulated ringtone file that contains an executable payload and trigger code executi...
CVE-2019-12326
Missing file and path validation in the ringtone upload function of the Akuvox R50P VoIP phone 50.0.6.156 allows an attacker to upload a manipulated ringtone file, with an executable payload shell commands within the file and trigger code execution...