Filtered by vendor Digi Subscriptions
Filtered by product Passport Firmware Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-4299 1 Digi 39 Cm, Cm Firmware, Connect Es and 36 more 2024-11-21 9 Critical
Digi RealPort Protocol is vulnerable to a replay attack that may allow an attacker to bypass authentication to access connected equipment.
CVE-2022-26953 1 Digi 2 Passport, Passport Firmware 2024-11-21 7.5 High
Digi Passport Firmware through 1.5.1,1 is affected by a buffer overflow. An attacker can supply a string in the page parameter for reboot.asp endpoint, allowing him to force an overflow when the string is concatenated to the HTML body.
CVE-2022-26952 1 Digi 2 Passport, Passport Firmware 2024-11-21 7.5 High
Digi Passport Firmware through 1.5.1,1 is affected by a buffer overflow in the function for building the Location header string when an unauthenticated user is redirected to the authentication page.