一、 漏洞 CVE-2024-7120 基础信息
漏洞信息
# 瑞斯康MSG1200/MSG2100E/MSG2200/MSG2300 Web界面list_base_config.php os命令注入漏洞
## 概述
在Raisecom(MSG1200, MSG2100E, MSG2200, MSG2300)的版本3.90中发现了一个严重的漏洞。该漏洞影响Web Interface组件中的未知部分文件`list_base_config.php`,通过操纵参数`template`可导致操作系统命令注入。
## 影响版本
- Raisecom MSG1200 3.90
- Raisecom MSG2100E 3.90
- Raisecom MSG2200 3.90
- Raisecom MSG2300 3.90
## 细节
攻击者可以通过远程方式触发此漏洞,修改参数`template`可能导致操作系统级别的命令注入。该漏洞已被公开披露,攻击方法已公开。
## 影响
攻击者可以远程利用此漏洞执行任意操作系统命令,可能造成系统控制权的丢失。
提示
尽管我们采用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。
神龙会尽力确保数据准确,但也请结合实际情况进行甄别与判断。
神龙祝您一切顺利!
神龙会尽力确保数据准确,但也请结合实际情况进行甄别与判断。
神龙祝您一切顺利!
漏洞标题
Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 Web Interface list_base_config.php os command injection
来源:美国国家漏洞数据库 NVD
漏洞描述信息
A vulnerability, which was classified as critical, was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. This affects an unknown part of the file list_base_config.php of the component Web Interface. The manipulation of the argument template leads to os command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-272451.
来源:美国国家漏洞数据库 NVD
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
来源:美国国家漏洞数据库 NVD
漏洞类别
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
来源:美国国家漏洞数据库 NVD
漏洞标题
Raisecom MSG1200、MSG2100E、MSG2200和MSG2300 操作系统命令注入漏洞
来源:中国国家信息安全漏洞库 CNNVD
漏洞描述信息
Raisecom MSG1200等都是中国瑞斯达康(Raisecom)公司的一款千兆融合网关。 Raisecom MSG1200、MSG2100E、MSG2200和MSG2300存在操作系统命令注入漏洞,该漏洞源于对参数template的错误操作会导致操作系统命令注入。
来源:中国国家信息安全漏洞库 CNNVD
CVSS信息
N/A
来源:中国国家信息安全漏洞库 CNNVD
漏洞类别
授权问题
来源:中国国家信息安全漏洞库 CNNVD
二、漏洞 CVE-2024-7120 的公开POC
| # | POC 描述 | 源链接 | 神龙链接 |
|---|---|---|---|
| 1 | ⚠️⚠️ CVE-2024-7120 Command Injection Vulnerability in RAISECOM Gateway Devices | https://github.com/fa-rrel/CVE-2024-7120 | POC详情 |
| 2 | ⚠️⚠️ CVE-2024-7120 Command Injection Vulnerability in RAISECOM Gateway Devices | https://github.com/gh-ost00/CVE-2024-7120 | POC详情 |
| 3 | A vulnerability, which was classified as critical, was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. This affects an unknown part of the file list_base_config.php of the component Web Interface. The manipulation of the argument template leads to os command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-272451. | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2024/CVE-2024-7120.yaml | POC详情 |
| 4 | None | https://github.com/jokeir07x/CVE-2024-7120-Exploit-by-Dark-07x | POC详情 |
三、漏洞 CVE-2024-7120 的情报信息
- https://netsecfish.notion.site/Command-Injection-Vulnerability-in-RAISECOM-Gateway-Devices-673bc7d2f8db499f9de7182d4706c707?pvs=4 exploit
- https://vuldb.com/?ctiid.272451 signature permissions-required
-
标题: Submit #380167: Raisecom MSG1200, MSG2100E, MSG2200, MSG2300 SoftwareVersion=3.90 Command Injection -- 🔗来源链接
标签: third-party-advisory
- https://vuldb.com/?id.272451 vdb-entry technical-description
- https://nvd.nist.gov/vuln/detail/CVE-2024-7120