An issue was discovered on Systrome ISG-600C, ISG-600H, and ISG-800W 1.1-R2.1_TRUNK-20180914.bin devices. There is CSRF via /ui/?g=obj_keywords_add and /ui/?g=obj_keywords_addsave with resultant XSS because of a lack of csrf token validation.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-79,CWE-352,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| systrome | cumilon_isg-600h_firmware | 1.1-r2.1 |
| systrome | cumilon_isg-600c_firmware | 1.1-r2.1 |
| systrome | cumilon_isg-800w_firmware | 1.1-r2.1 |
An issue was discovered on Systrome Cumilon ISG-600C, ISG-600H, and ISG-800W devices with firmware V1.1-R2.1_TRUNK-20181105.bin. A shell command injection occurs by editing the description of an ISP file. The file network/isp/isp_update_edit.php does not properly validate user input, which leads to shell command injection via the des parameter.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-78,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| systrome | cumilon_isg-600h_firmware | 1.1-r2.1 |
| systrome | cumilon_isg-600c_firmware | 1.1-r2.1 |
| systrome | cumilon_isg-800w_firmware | 1.1-r2.1 |
A local file inclusion vulnerability exists in the web interface of Systrome Cumilon ISG-600C, ISG-600H, and ISG-800W 1.1-R2.1_TRUNK-20180914.bin devices. When the export function is called from system/maintenance/export.php, it accepts the path provided by the user, leading to path traversal via the name parameter.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-22,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| systrome | isg-800w_firmware | 1.1-r2.1_trunk-20180914 |
| systrome | isg-600h_firmware | 1.1-r2.1_trunk-20180914 |
| systrome | isg-600c_firmware | 1.1-r2.1_trunk-20180914 |