CVE-2024-50627

{"id": "CVE-2024-50627", "cveTags": [], "metrics": {}, "published": "2024-12-09T22:15:22.853", "references": [{"url": "https://www.digi.com/getattachment/Resources/Security/Alerts/Digi-ConnectPort-LTS-Firmware-Update/ConnectPort-LTS-KB.pdf", "source": "cve@mitre.org"}, {"url": "https://www.digi.com/resources/documentation/digidocs/pdfs/90001001.pdf", "source": "cve@mitre.org"}, {"url": "https://www.digi.com/resources/security", "source": "cve@mitre.org"}], "vulnStatus": "Received", "descriptions": [{"lang": "en", "value": "An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Privilege Escalation vulnerability exists in the file upload feature. It allows an attacker on the local area network (with specific permissions) to upload and execute malicious files, potentially leading to unauthorized system access."}], "lastModified": "2024-12-09T22:15:22.853", "sourceIdentifier": "cve@mitre.org"}