CVE-2024-7467

Exploit

EPSS 23.4%
Veröffentlicht 05.08.2024 03:16:08
Zuletzt bearbeitet 06.08.2024 17:31:58
Quelle cna@vuldb.com
CVE-Watchlists
Login
Unerledigt
Login

Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 Web Interface list_ip_network.php sslvpn_config_mod os command injection

A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90 and classified as critical. Affected by this issue is the function sslvpn_config_mod of the file /vpn/list_ip_network.php of the component Web Interface. The manipulation of the argument template/stylenum leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-273560. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Betroffene Produkte Warnungen 0 Metriken 5 CWE 1 Referenzen 7

NVD 4 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Raisecom ≫ Msg2300 Firmware Version3.90

Raisecom ≫ Msg2300 Version-

Raisecom ≫ Msg2100e Firmware Version3.90

Raisecom ≫ Msg2100e Version-

Raisecom ≫ Msg2200 Firmware Version3.90

Raisecom ≫ Msg2200 Version-

Raisecom ≫ Msg1200 Firmware Version3.90

Raisecom ≫ Msg1200 Version-

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	23.4%	0.975

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cna@vuldb.com	5.3	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
cna@vuldb.com	6.3	2.8	3.4	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cna@vuldb.com	6.5	8	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P

CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

https://github.com/h0e4a0r1t/h0e4a0r1t.github.io/blob/master/2024/sQrromK7x42JbLgY/Command%20Injection%20Vulnerability%20in%20RAISECOM%20Gateway%20Devices-list_ip_network.php.pdf

Third Party Advisory

Exploit

Broken Link

Technical Description

https://vuldb.com/?ctiid.273560

VDB Entry

Permissions Required

https://vuldb.com/?id.273560

VDB Entry

https://vuldb.com/?submit.385347

Third Party Advisory

VDB Entry

https://nvd.nist.gov/vuln/detail/CVE-2024-7467

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-7467

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-7467

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-7467