Critical severity9.1NVD Advisory· Published Sep 7, 2018· Updated Jun 17, 2026
CVE-2018-15486
CVE-2018-15486
Description
An issue was discovered on KONE Group Controller (KGC) devices before 4.6.5. Unauthenticated Local File Inclusion and File modification is possible through the open HTTP interface by modifying the name parameter of the file endpoint, aka KONE-02.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <4.6.5
Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/149252/KONE-KGC-4.6.4-DoS-Code-Execution-LFI-Bypass.htmlnvdExploitThird Party AdvisoryVDB Entry
- www.kone.com/en/vulnerability.aspxnvdVendor Advisory
News mentions
0No linked articles in our index yet.