Westermo · Westermo Dr-260 · CVE-2018-19612
**Name of the Vulnerable Software and Affected Versions**
Westermo DR-250 versions Pre-5162
Westermo DR-260 versions Pre-5162
**Description**
The issue concerns the /uploadfile functionality, which allows remote users to upload malicious file types and execute ASP code.
**Recommendations**
For Westermo DR-250 version Pre-5162, update to a version post-5162 to resolve the issue.
For Westermo DR-260 version Pre-5162, update to a version post-5162 to resolve the issue.
As a temporary workaround, consider restricting access to the /uploadfile functionality until a patch is available.