Lucene search
K

48 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:56 a.m.20 views

CVE-2020-12878

Digi ConnectPort X2e before 3.2.30.6 allows an attacker to escalate privileges from the python user to root via a symlink attack that uses chown, related to /etc/init.d/S50dropbear.sh and the /WEB/python/.ssh directory...

7.8CVSS7AI score0.00505EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2020-5159

Malware in sbrugna...

7.8CVSS8.3AI score0.00505EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/23 8:34 a.m.4 views

CVE-2024-50626

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Directory Traversal vulnerability exists in WebFS. This allows an attacker on the local area network to manipulate URLs to include traversal sequences, potentially leading to unauthorized access to data...

8.8CVSS5.9AI score0.00523EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:32 a.m.4 views

CVE-2024-50625

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A vulnerability in the file upload handling of a web application allows manipulation of file paths via POST requests. This can lead to arbitrary file uploads within specific directories, potentially enabling privilege escalation when...

8CVSS5.9AI score0.00316EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:32 a.m.7 views

CVE-2024-50627

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Privilege Escalation vulnerability exists in the file upload feature. It allows an attacker on the local area network with specific permissions to upload and execute malicious files, potentially leading to unauthorized system access...

8.8CVSS6.9AI score0.00322EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:51 a.m.6 views

CVE-2024-50628

An issue was discovered in the web services of Digi ConnectPort LTS before 1.4.12. It allows an attacker on the local area network to achieve unauthorized manipulation of resources, which may lead to remote code execution when combined with other issues...

8.8CVSS7.7AI score0.00464EPSS
Exploits0References1
NVD
NVD
added 2024/12/09 10:15 p.m.14 views

CVE-2024-50628

An issue was discovered in the web services of Digi ConnectPort LTS before 1.4.12. It allows an attacker on the local area network to achieve unauthorized manipulation of resources, which may lead to remote code execution when combined with other issues...

8.8CVSS0.00464EPSS
Exploits0References3
NVD
NVD
added 2024/12/09 10:15 p.m.12 views

CVE-2024-50625

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A vulnerability in the file upload handling of a web application allows manipulation of file paths via POST requests. This can lead to arbitrary file uploads within specific directories, potentially enabling privilege escalation when...

8CVSS0.00316EPSS
Exploits0References3
OSV
OSV
added 2024/12/09 10:15 p.m.6 views

CVE-2024-50628

An issue was discovered in the web services of Digi ConnectPort LTS before 1.4.12. It allows an attacker on the local area network to achieve unauthorized manipulation of resources, which may lead to remote code execution when combined with other issues...

8.8CVSS6.3AI score0.00464EPSS
Exploits0References3
NVD
NVD
added 2024/12/09 10:15 p.m.21 views

CVE-2024-50627

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Privilege Escalation vulnerability exists in the file upload feature. It allows an attacker on the local area network with specific permissions to upload and execute malicious files, potentially leading to unauthorized system access...

8.8CVSS0.00322EPSS
Exploits0References3
OSV
OSV
added 2024/12/09 10:15 p.m.10 views

CVE-2024-50626

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Directory Traversal vulnerability exists in WebFS. This allows an attacker on the local area network to manipulate URLs to include traversal sequences, potentially leading to unauthorized access to data...

8.8CVSS5.8AI score0.00523EPSS
Exploits0References3
NVD
NVD
added 2024/12/09 10:15 p.m.13 views

CVE-2024-50626

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Directory Traversal vulnerability exists in WebFS. This allows an attacker on the local area network to manipulate URLs to include traversal sequences, potentially leading to unauthorized access to data...

8.8CVSS0.00523EPSS
Exploits0References3
OSV
OSV
added 2024/12/09 10:15 p.m.9 views

CVE-2024-50627

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Privilege Escalation vulnerability exists in the file upload feature. It allows an attacker on the local area network with specific permissions to upload and execute malicious files, potentially leading to unauthorized system access...

8.8CVSS5.9AI score0.00322EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/12/09 12:0 a.m.4 views

PT-2024-34365 · Digi · Digi Connectport Lts

Name of the Vulnerable Software and Affected Versions: Digi ConnectPort LTS versions prior to 1.4.12 Description: A vulnerability in the file upload handling of a web application allows manipulation of file paths via POST requests to API endpoints such as /file/upload. This can lead to arbitrary...

8CVSS7AI score0.00316EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2024/12/09 12:0 a.m.11 views

CVE-2024-50627

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Privilege Escalation vulnerability exists in the file upload feature. It allows an attacker on the local area network with specific permissions to upload and execute malicious files, potentially leading to unauthorized system access...

8.6AI score0.00322EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/12/09 12:0 a.m.26 views

CVE-2024-50626

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Directory Traversal vulnerability exists in WebFS. This allows an attacker on the local area network to manipulate URLs to include traversal sequences, potentially leading to unauthorized access to data...

0.00523EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/12/09 12:0 a.m.12 views

CVE-2024-50626

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Directory Traversal vulnerability exists in WebFS. This allows an attacker on the local area network to manipulate URLs to include traversal sequences, potentially leading to unauthorized access to data...

6.6AI score0.00523EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/12/09 12:0 a.m.3 views

Digi ConnectPort 安全漏洞

Digi ConnectPort is a server from Digital Networks Malaysia Digi Inc. It provides wireless communication. A security vulnerability exists in Digi ConnectPort versions prior to 1.4.12 that stems from a directory traversal vulnerability in WebFS, which could lead to unauthorized access to data...

8.8CVSS6.6AI score0.00523EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/12/09 12:0 a.m.5 views

PT-2024-34367 · Digi · Digi Connectport Lts

Name of the Vulnerable Software and Affected Versions: Digi ConnectPort LTS versions prior to 1.4.12 Description: A Privilege Escalation issue exists in the file upload feature of Digi ConnectPort LTS. This allows an attacker on the local area network, with specific permissions, to upload and...

8.8CVSS6.5AI score0.00322EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/12/09 12:0 a.m.4 views

PT-2024-34366 · Digi · Digi Connectport Lts

Name of the Vulnerable Software and Affected Versions: Digi ConnectPort LTS versions prior to 1.4.12 Description: A Directory Traversal vulnerability exists in WebFS, allowing an attacker on the local area network to manipulate URLs to include traversal sequences, potentially leading to...

8.8CVSS6.3AI score0.00523EPSS
Exploits0References8
Rows per page
Query Builder