3 matches found
CVE-2022-2634 Digi ConnectPort X2D
An attacker may be able to execute malicious actions due to the lack of device access protections and device permissions when using the web application. This could lead to uploading python files which can be later executed...
CVE-2022-2634
The CVE-2022-2634 entry maps to Digi ConnectPort X2D Gateway vulnerabilities where the web application lacks device access protections and permissions, allowing an attacker to upload Python files that can be executed. Concrete details from connected sources indicate affected products are Digi Con...
Digi ConnectPort X2D
1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: Digi International, Inc. Equipment: ConnectPort X2D Gateway Vulnerability: Execution with Unnecessary Privileges 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker...