Digi Passport Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Digi Passport Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2023-4299 — CVSS 9.0 (critical): Digi RealPort Protocol is vulnerable to a replay attack that may allow an attacker to bypass authentication to access connected equipment.
CVE-2022-26952 — CVSS 7.5 (high): Digi Passport Firmware through 1.5.1,1 is affected by a buffer overflow in the function for building the Location header string when an…
CVE-2022-26953 — CVSS 7.5 (high): Digi Passport Firmware through 1.5.1,1 is affected by a buffer overflow. An attacker can supply a string in the page parameter for…