CVE-2024-50627
CVSS 3.1 Score 8.8 of 10 (high)
Details
Published Dec 9, 2024
Updated: Dec 11, 2024
CWE ID 552
Summary
CVE-2024-50627 is a recently identified vulnerability affecting Digi ConnectPort LTS before version 1.4.12. This issue involves a Privilege Escalation flaw in the file upload feature. An attacker on the local area network with specific permissions can exploit this vulnerability to upload and execute malicious files, which could result in unauthorized system access. This poses a significant risk to network security, requiring users to promptly update their software to mitigate the threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share