An issue was discovered on KONE Group Controller (KGC) devices before 4.6.5. Unauthenticated Local File Inclusion and File modification is possible through the open HTTP interface by modifying the name parameter of the file endpoint, aka KONE-02.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-09-07T22:00:00

Updated: 2024-08-05T09:54:03.464Z

Reserved: 2018-08-17T00:00:00

Link: CVE-2018-15486

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-09-07T22:29:01.493

Modified: 2024-11-21T03:50:55.210

Link: CVE-2018-15486

cve-icon Redhat

No data.