📦

connectport_x2e

Vendor: digi

Login to add this product to WatchStack
Actively Exploited 0 CISA KEV List
PoC / Exploits 0 Code Available
Total RCEs 0 Remote Access
Total CVEs 1 Total Indexed
Avg. EPSS 0.10% Exploit Prob.
Latest CVE CVE-2020-12878 Feb 18

Security Vulnerability Index

Page 1 / 1
7.8 CVSS
CVE-2020-12878

Digi ConnectPort X2e before 3.2.30.6 allows an attacker to escalate privileges from the python user to root via a symlink attack that uses chown, related to /etc/init.d/S50dropbear.sh and the /WEB/python/.ssh directory.

EPSS: 0.10%