Unrated severityNVD Advisory· Published Sep 14, 2023· Updated Sep 25, 2024
CVE-2021-28485
CVE-2021-28485
Description
In Ericsson Mobile Switching Center Server (MSC-S) before IS 3.1 CP22, the SIS web application allows relative path traversal via a specific parameter in the https request after authentication, which allows access to files on the system that are not intended to be accessible via the web application.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Ericsson/Mobile Switching Center Server (MSC-S)description
- Range: < IS 3.1 CP22
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.