CVE-2024-50627

Name of the Vulnerable Software and Affected Versions: Digi ConnectPort LTS versions prior to 1.4.12

Description: A Privilege Escalation issue exists in the file upload feature of Digi ConnectPort LTS. This allows an attacker on the local area network, with specific permissions, to upload and execute malicious files, potentially leading to unauthorized system access.

Recommendations: For versions prior to 1.4.12, update to version 1.4.12 or later to resolve the issue. As a temporary workaround, consider restricting access to the file upload feature to minimize the risk of exploitation.