CVE-2024-50626

Name of the Vulnerable Software and Affected Versions: Digi ConnectPort LTS versions prior to 1.4.12

Description: A Directory Traversal vulnerability exists in WebFS, allowing an attacker on the local area network to manipulate URLs to include traversal sequences, potentially leading to unauthorized access to data.

Recommendations: For versions prior to 1.4.12, update to version 1.4.12 or later to resolve the issue. As a temporary workaround, consider restricting access to the WebFS component until a patch is available.