CVE-2024-33109

CVSS 9.9 CRITICALEPSS 0.9%CWE-22

Directory Traversal in the web interface of the Tiptel IP 286 with firmware version 2.61.13.10 allows attackers to overwrite arbitrary files on the phone via the Ringtone upload function.

CVSS:3.1/AC:L/AV:N/A:L/C:H/I:H/PR:L/S:C/UI:N

Produtos afetados

n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.bdosecurity.de/en-gb/advisories/cve-2024-33109 http://tiptel.com