Lucene search
K

19 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:34 a.m.3 views

CVE-2024-50626

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Directory Traversal vulnerability exists in WebFS. This allows an attacker on the local area network to manipulate URLs to include traversal sequences, potentially leading to unauthorized access to data...

8.8CVSS5.9AI score0.00513EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:32 a.m.4 views

CVE-2024-50625

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A vulnerability in the file upload handling of a web application allows manipulation of file paths via POST requests. This can lead to arbitrary file uploads within specific directories, potentially enabling privilege escalation when...

8CVSS5.9AI score0.00309EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:32 a.m.7 views

CVE-2024-50627

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Privilege Escalation vulnerability exists in the file upload feature. It allows an attacker on the local area network with specific permissions to upload and execute malicious files, potentially leading to unauthorized system access...

8.8CVSS6.9AI score0.00316EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:51 a.m.6 views

CVE-2024-50628

An issue was discovered in the web services of Digi ConnectPort LTS before 1.4.12. It allows an attacker on the local area network to achieve unauthorized manipulation of resources, which may lead to remote code execution when combined with other issues...

8.8CVSS7.7AI score0.00464EPSS
Exploits0References1
NVD
NVD
added 2024/12/09 10:15 p.m.11 views

CVE-2024-50625

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A vulnerability in the file upload handling of a web application allows manipulation of file paths via POST requests. This can lead to arbitrary file uploads within specific directories, potentially enabling privilege escalation when...

8CVSS0.00309EPSS
Exploits0References3
OSV
OSV
added 2024/12/09 10:15 p.m.7 views

CVE-2024-50627

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Privilege Escalation vulnerability exists in the file upload feature. It allows an attacker on the local area network with specific permissions to upload and execute malicious files, potentially leading to unauthorized system access...

8.8CVSS5.9AI score0.00316EPSS
Exploits0References3
NVD
NVD
added 2024/12/09 10:15 p.m.14 views

CVE-2024-50628

An issue was discovered in the web services of Digi ConnectPort LTS before 1.4.12. It allows an attacker on the local area network to achieve unauthorized manipulation of resources, which may lead to remote code execution when combined with other issues...

8.8CVSS0.00464EPSS
Exploits0References3
OSV
OSV
added 2024/12/09 10:15 p.m.5 views

CVE-2024-50628

An issue was discovered in the web services of Digi ConnectPort LTS before 1.4.12. It allows an attacker on the local area network to achieve unauthorized manipulation of resources, which may lead to remote code execution when combined with other issues...

8.8CVSS6.3AI score0.00464EPSS
Exploits0References3
NVD
NVD
added 2024/12/09 10:15 p.m.11 views

CVE-2024-50626

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Directory Traversal vulnerability exists in WebFS. This allows an attacker on the local area network to manipulate URLs to include traversal sequences, potentially leading to unauthorized access to data...

8.8CVSS0.00513EPSS
Exploits0References3
CVE
CVE
added 2024/12/09 12:0 a.m.63 views

CVE-2024-50628

CVE-2024-50628 affects Digi ConnectPort LTS web services prior to 1.4.12. The issue enables an attacker on the local network to perform unauthorized manipulation of resources, with potential remote code execution when combined with other issues. Affected product: Digi ConnectPort LTS (before 1.4....

8.8CVSS7.9AI score0.00464EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2024/12/09 12:0 a.m.4 views

PT-2024-34365 · Digi · Digi Connectport Lts

Name of the Vulnerable Software and Affected Versions: Digi ConnectPort LTS versions prior to 1.4.12 Description: A vulnerability in the file upload handling of a web application allows manipulation of file paths via POST requests to API endpoints such as /file/upload. This can lead to arbitrary...

8CVSS7AI score0.00309EPSS
Exploits0References8
Cvelist
Cvelist
added 2024/12/09 12:0 a.m.17 views

CVE-2024-50625

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A vulnerability in the file upload handling of a web application allows manipulation of file paths via POST requests. This can lead to arbitrary file uploads within specific directories, potentially enabling privilege escalation when...

0.00309EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/12/09 12:0 a.m.8 views

CVE-2024-50625

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A vulnerability in the file upload handling of a web application allows manipulation of file paths via POST requests. This can lead to arbitrary file uploads within specific directories, potentially enabling privilege escalation when...

7.4AI score0.00309EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/12/09 12:0 a.m.16 views

CVE-2024-50627

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Privilege Escalation vulnerability exists in the file upload feature. It allows an attacker on the local area network with specific permissions to upload and execute malicious files, potentially leading to unauthorized system access...

0.00316EPSS
Exploits0References3
CVE
CVE
added 2024/12/09 12:0 a.m.58 views

CVE-2024-50626

CVE-2024-50626 affects Digi ConnectPort LTS prior to 1.4.12. A WebFS directory traversal vulnerability allows an attacker on the same LAN to manipulate URLs to include traversal sequences, potentially yielding unauthorized access to data. Connected sources consistently describe the issue as a dir...

8.8CVSS6.8AI score0.00513EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/12/09 12:0 a.m.12 views

CVE-2024-50626

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Directory Traversal vulnerability exists in WebFS. This allows an attacker on the local area network to manipulate URLs to include traversal sequences, potentially leading to unauthorized access to data...

6.6AI score0.00513EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/12/09 12:0 a.m.9 views

CVE-2024-50628

An issue was discovered in the web services of Digi ConnectPort LTS before 1.4.12. It allows an attacker on the local area network to achieve unauthorized manipulation of resources, which may lead to remote code execution when combined with other issues...

8.9AI score0.00464EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/12/09 12:0 a.m.5 views

PT-2024-34368 · Digi · Digi Connectport Lts

Name of the Vulnerable Software and Affected Versions: Digi ConnectPort LTS versions prior to 1.4.12 Description: An issue was discovered in the web services of Digi ConnectPort LTS, allowing an attacker on the local area network to achieve unauthorized manipulation of resources. This may lead to...

8.8CVSS7.2AI score0.00464EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/12/09 12:0 a.m.5 views

PT-2024-34367 · Digi · Digi Connectport Lts

Name of the Vulnerable Software and Affected Versions: Digi ConnectPort LTS versions prior to 1.4.12 Description: A Privilege Escalation issue exists in the file upload feature of Digi ConnectPort LTS. This allows an attacker on the local area network, with specific permissions, to upload and...

8.8CVSS6.5AI score0.00316EPSS
Exploits0References8
Rows per page
Query Builder