TWCERT/CC Taiwan Computer Emergency Response Team/Coordination Center-Team Johnlong software Raiden MAILD Remote Management System - Arbitrary File Reading through Path Traversal

Date:2024-08-12

Font-stze:

Team Johnlong software Raiden MAILD Remote Management System - Arbitrary File Reading through Path Traversal

TVN ID	TVN-202408001
CVE ID	CVE-2024-7693
CVSS	7.5 (High) CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products	Raiden MAILD Remote Management System version 5.01 and earlier.
Description	Raiden MAILD Remote Management System from Team Johnlong Software has a Relative Path Traversal vulnerability, allowing unauthenticated remote attackers to read arbitrary file on the remote server.
Solution	Update to version 5.02 or later.
Credit	Brianlin(Baohwa Trust)
Public Date	2024-08-12