Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-4299 | 1 Digi | 39 Cm, Cm Firmware, Connect Es and 36 more | 2024-02-28 | N/A | 8.1 HIGH |
Digi RealPort Protocol is vulnerable to a replay attack that may allow an attacker to bypass authentication to access connected equipment. | |||||
CVE-2022-26953 | 1 Digi | 2 Passport, Passport Firmware | 2024-02-28 | 5.0 MEDIUM | 7.5 HIGH |
Digi Passport Firmware through 1.5.1,1 is affected by a buffer overflow. An attacker can supply a string in the page parameter for reboot.asp endpoint, allowing him to force an overflow when the string is concatenated to the HTML body. | |||||
CVE-2022-26952 | 1 Digi | 2 Passport, Passport Firmware | 2024-02-28 | 5.0 MEDIUM | 7.5 HIGH |
Digi Passport Firmware through 1.5.1,1 is affected by a buffer overflow in the function for building the Location header string when an unauthenticated user is redirected to the authentication page. |