The vulnerability of the ssvpn_config_mod function in the /vpn/list_vpn_web_custom.php web interface of the Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 router integrated software allows a malicious actor to execute arbitrary commands.
The vulnerability of the ssvpnconfigmod function in the /vpn/listvpnwebcustom.php web interface of the Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 router integrated software is related to the failure to eliminate special elements used in the command when processing parameters template and...