FKIE_CVE-2024-50625

Vulnerability from fkie_nvd - Published: 2024-12-09 22:15 - Updated: 2025-06-27 16:07
Severity ?
8.0 (High) - CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
An issue was discovered in Digi ConnectPort LTS before 1.4.12. A vulnerability in the file upload handling of a web application allows manipulation of file paths via POST requests. This can lead to arbitrary file uploads within specific directories, potentially enabling privilege escalation when combined with other vulnerabilities.
References
cve@mitre.orghttps://www.digi.com/getattachment/Resources/Security/Alerts/Digi-ConnectPort-LTS-Firmware-Update/ConnectPort-LTS-KB.pdfVendor Advisory
cve@mitre.orghttps://www.digi.com/resources/documentation/digidocs/pdfs/90001001.pdfProduct
cve@mitre.orghttps://www.digi.com/resources/securityVendor Advisory
Impacted products
Vendor Product Version
digi connectport_lts_firmware *
digi connectport_lts_16 -
digi connectport_lts_16_mei -
digi connectport_lts_16_mei_2ac -
digi connectport_lts_32 -
digi connectport_lts_32_mei -
digi connectport_lts_8_mei -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:connectport_lts_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "36E2B8EB-FD51-4EFD-87BC-61841B5B1372",
              "versionEndExcluding": "1.4.12",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:connectport_lts_16:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D927F6A5-D6AA-4AEB-A7E8-CA5A3BE5ED6E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:digi:connectport_lts_16_mei:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BDCB83B5-1662-47D8-89E9-F64297D235A5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:digi:connectport_lts_16_mei_2ac:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCF5F04A-5AE9-4C1B-8F54-820CF6673E12",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:digi:connectport_lts_32:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "6F118AD7-F6E3-4F5F-91F6-B52978C0018D",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:digi:connectport_lts_32_mei:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4D38E1C-90DE-4B19-9CE4-3B9116AE7AE0",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:digi:connectport_lts_8_mei:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "78489691-DF52-45FF-BC61-7DDBCB0B56F0",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "An issue was discovered in Digi ConnectPort LTS before 1.4.12. A vulnerability in the file upload handling of a web application allows manipulation of file paths via POST requests. This can lead to arbitrary file uploads within specific directories, potentially enabling privilege escalation when combined with other vulnerabilities."
    },
    {
      "lang": "es",
      "value": "Se descubri\u00f3 un problema en Digi ConnectPort LTS anterior a la versi\u00f3n 1.4.12. Una vulnerabilidad en el manejo de carga de archivos de una aplicaci\u00f3n web permite la manipulaci\u00f3n de rutas de archivos mediante solicitudes POST. Esto puede provocar cargas de archivos arbitrarias dentro de directorios espec\u00edficos, lo que potencialmente permite la escalada de privilegios cuando se combina con otras vulnerabilidades."
    }
  ],
  "id": "CVE-2024-50625",
  "lastModified": "2025-06-27T16:07:48.380",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "ADJACENT_NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.0,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.1,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2024-12-09T22:15:22.610",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.digi.com/getattachment/Resources/Security/Alerts/Digi-ConnectPort-LTS-Firmware-Update/ConnectPort-LTS-KB.pdf"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Product"
      ],
      "url": "https://www.digi.com/resources/documentation/digidocs/pdfs/90001001.pdf"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.digi.com/resources/security"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-434"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.