Digi International ConnectPort LTS 32 MEI, Firmware Version 1.4.3 (82002228_K 08/09/2018), bios Version 1.2. Successful exploitation of this vulnerability could allow an attacker to upload a malicious file to the application.
References
Link | Resource |
---|---|
https://www.us-cert.gov/ics/advisories/icsa-20-042-13 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2020-02-12 15:15
Updated : 2020-02-21 12:57
NVD link : CVE-2020-6975
Mitre link : CVE-2020-6975
JSON object : View
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type
Products Affected
digi
- connectport_lts_32_mei
- connectport_lts_32_mei_firmware
- connectport_lts_32_mei_bios