Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
digi transport wr11 firmware vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-37189
An issue exists on Digi TransPort Gateway devices up to and including 5.2.13.4. They do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in cleartext over an HTTP session.
Digi Transport Wr11 Firmware
Digi Transport Wr11 Xt Firmware
Digi Transport Wr21 Firmware
Digi Transport Wr31 Firmware
Digi Transport Wr41 Firmware
Digi Transport Wr44 Firmware
8.8
CVSSv3
CVE-2021-37188
An issue exists on Digi TransPort devices through 2021-07-21. An authenticated attacker may load customized firmware (because the bootloader does not verify that it is authentic), changing the behavior of the gateway.
Digi Transport Dr64 Firmware
Digi Transport Dr64 Firmware -
Digi Transport Vc74 Firmware
Digi Transport Wr11 Firmware
Digi Transport Wr11 Xt Firmware
Digi Transport Wr21 Firmware
Digi Transport Wr31 Firmware
Digi Transport Wr41 Firmware
Digi Transport Wr44 Firmware
9.8
CVSSv3
CVE-2021-35978
An issue exists in Digi TransPort DR64, SR44 VC74, and WR. The ZING protocol allows arbitrary remote command execution with SUPER privileges. This allows an attacker (with knowledge of the protocol) to execute arbitrary code on the controller including overwriting firmware, addin...
Digi Transport Dr64 Firmware
Digi Transport Sr44 Firmware
Digi Transport Vc74 Firmware
Digi Transport Wr11 Firmware
Digi Transport Wr11 Xt Firmware
Digi Transport Wr21 Firmware
Digi Transport Wr31 Firmware
Digi Transport Wr41 Firmware
Digi Transport Wr44 Firmware
6.5
CVSSv3
CVE-2021-37187
An issue exists on Digi TransPort devices through 2021-07-21. An authenticated attacker may read a password file (with reversible passwords) from the device, which allows decoding of other users' passwords.
Digi Transport Dr64 Firmware
Digi Transport Dr64 Firmware -
Digi Transport Vc74 Firmware
Digi Transport Wr11 Firmware
Digi Transport Wr11 Xt Firmware
Digi Transport Wr21 Firmware
Digi Transport Wr31 Firmware
Digi Transport Wr41 Firmware
Digi Transport Wr44 Firmware
9.8
CVSSv3
CVE-2021-35977
An issue exists in Digi RealPort for Windows up to and including 4.8.488.0. A buffer overflow exists in the handling of ADDP discovery response messages. This could result in arbitrary code execution.
Digi Realport
Digi Connectport Ts 8/16 Firmware
Digi Connectport Lts 8/16/32 Firmware
Digi Passport Integrated Console Server Firmware
Digi Cm Firmware
Digi Portserver Ts Firmware
Digi Portserver Ts Mei Firmware
Digi Portserver Ts Mei Hardened Firmware
Digi Portserver Ts M Mei Firmware
Digi 6350-sr Firmware
Digi Portserver Ts P Mei Firmware
Digi Transport Wr11 Xt Firmware
Digi One Iap Family Firmware
Digi One Ia Firmware
Digi Wr31 Firmware
Digi Wr44 R Firmware
Digi Connect Es Firmware
Digi Wr21 Firmware
8.1
CVSSv3
CVE-2021-35979
An issue exists in Digi RealPort up to and including 4.8.488.0. The 'encrypted' mode is vulnerable to man-in-the-middle attacks and does not perform authentication.
Digi Realport
Digi Connectport Ts 8/16 Firmware
Digi Connectport Lts 8/16/32 Firmware
Digi Passport Integrated Console Server Firmware
Digi Cm Firmware
Digi Portserver Ts Firmware
Digi Portserver Ts Mei Firmware
Digi Portserver Ts Mei Hardened Firmware
Digi Portserver Ts M Mei Firmware
Digi 6350-sr Firmware
Digi Portserver Ts P Mei Firmware
Digi Transport Wr11 Xt Firmware
Digi One Iap Family Firmware
Digi One Ia Firmware
Digi Wr31 Firmware
Digi Wr44 R Firmware
Digi Connect Es Firmware
Digi Wr21 Firmware
9.8
CVSSv3
CVE-2021-36767
In Digi RealPort up to and including 4.10.490, authentication relies on a challenge-response mechanism that gives access to the server password, making the protection ineffective. An attacker may send an unauthenticated request to the server. The server will reply with a weakly-h...
Digi Realport
Digi Connectport Ts 8/16 Firmware
Digi Connectport Lts 8/16/32 Firmware
Digi Passport Integrated Console Server Firmware
Digi Cm Firmware
Digi Portserver Ts Firmware
Digi Portserver Ts Mei Firmware
Digi Portserver Ts Mei Hardened Firmware
Digi Portserver Ts M Mei Firmware
Digi 6350-sr Firmware
Digi Portserver Ts P Mei Firmware
Digi Transport Wr11 Xt Firmware
Digi One Ia Firmware
Digi Wr31 Firmware
Digi Wr44 R Firmware
Digi Connect Es Firmware
Digi Wr21 Firmware
Digi One Iap Firmware
Digi One Iap Haz Firmware
8.1
CVSSv3
CVE-2023-4299
Digi RealPort Protocol is vulnerable to a replay attack that may allow an malicious user to bypass authentication to access connected equipment.
Digi Realport
Digi Connectport Ts 8/16 Firmware
Digi Passport Firmware -
Digi Connectport Lts 8/16/32 Firmware
Digi Cm Firmware -
Digi Portserver Ts Firmware -
Digi Portserver Ts Mei Firmware -
Digi Portserver Ts Mei Hardened Firmware -
Digi Portserver Ts M Mei Firmware -
Digi Portserver Ts P Mei Firmware -
Digi One Iap Firmware -
Digi One Ia Firmware -
Digi One Sp Ia Firmware -
Digi One Sp Firmware -
Digi Wr31 Firmware -
Digi Transport Wr11 Xt Firmware -
Digi Wr44 R Firmware -
Digi Wr21 Firmware -
Digi Connect Es Firmware
Digi Connect Sp Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started