CVE-2019-14251

Name of the Vulnerable Software and Affected Versions T24 in TEMENOS Channels version R15.01

Description An issue was discovered where the login page presents JavaScript functions to access a document on the server once successfully authenticated. However, an attacker can leverage the downloadDocServer() function to traverse the file system and access files or directories that are outside of the restricted directory. This is possible because WealthT24/GetImage is used with the docDownloadPath and uploadLocation parameters.

Recommendations For T24 in TEMENOS Channels version R15.01, consider restricting access to the downloadDocServer() function until a patch is available. Additionally, restrict the use of the docDownloadPath and uploadLocation parameters in the WealthT24/GetImage to minimize the risk of exploitation.