Digi Transport Wr21 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Digi Transport Wr21 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2021-35978 — CVSS 9.8 (critical): An issue was discovered in Digi TransPort DR64, SR44 VC74, and WR. The ZING protocol allows arbitrary remote command execution with SUPER…
CVE-2021-37188 — CVSS 8.8 (high): An issue was discovered on Digi TransPort devices through 2021-07-21. An authenticated attacker may load customized firmware (because the…
CVE-2021-37189 — CVSS 7.5 (high): An issue was discovered on Digi TransPort Gateway devices through 5.2.13.4. They do not set the Secure attribute for sensitive cookies in…
CVE-2021-37187 — CVSS 6.5 (medium): An issue was discovered on Digi TransPort devices through 2021-07-21. An authenticated attacker may read a password file (with reversible…
CVE-2020-8822 — CVSS 4.8 (medium): Digi TransPort WR21 5.2.2.3, WR44 5.1.6.4, and WR44v2 5.1.6.9 devices allow stored XSS in the web application.