Simon Brackenridge

**Name of the Vulnerable Software and Affected Versions** Westermo DR-250 versions Pre-5162 Westermo DR-260 versions Pre-5162 **Description** The issue concerns the /uploadfile functionality, which allows remote users to upload malicious file types and execute ASP code. **Recommendations** For Westermo DR-250 version Pre-5162, update to a version post-5162 to resolve the issue. For Westermo DR-260 version Pre-5162, update to a version post-5162 to resolve the issue. As a temporary workaround, consider restricting access to the /uploadfile functionality until a patch is available.