An issue exists in Nokia NetAct 22. A remote user, authenticated to the website, can visit the Site Configuration Tool section and arbitrarily upload potentially dangerous files without restrictions via the /netact/sct dir parameter in conjunction with the operation=upload value.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
nokia netact 22.0.0.62 |