CVE-2024-55516 Information

Description

A vulnerability was found in Raisecom MSG1200 MSG2100E MSG2200 and MSG2300 v3.90. The component affected by this issue is /upload_sysconfig.php on the web interface. By crafting a suitable form name arbitrary files can be uploaded potentially leading to unauthorized access to server permissions.

Reference

https://gist.github.com/wscg928/cbe88078751abad2ada2334eb12a5060