CVE-2021-35977 - Digi Connect Es Firmware, Digi One Iap Family Firmware and Digi Realport

October 8, 2021

Critical 9.8

An issue was discovered in Digi RealPort for Windows through 4.8.488.0. A buffer overflow exists in the handling of ADDP discovery response messages. This could result in arbitrary code execution.

Affected software

Digi Connect Es Firmware

Digi One Iap Family Firmware

Digi Realport

Digi Portserver Ts P Mei Firmware

Digi Wr44 R Firmware

Digi Connectport Ts 8\/16 Firmware

Digi Wr31 Firmware

Digi Portserver Ts Mei Firmware

Digi Transport Wr11 Xt Firmware

Digi Wr21 Firmware

Digi One Ia Firmware

Digi 6350-sr Firmware

Digi Connectcore 8x Firmware

Digi Connectport Lts 8\/16\/32 Firmware

Digi Passport Integrated Console Server Firmware

Digi Portserver Ts M Mei Firmware

Digi Portserver Ts Firmware

Digi Cm Firmware

Digi Portserver Ts Mei Hardened Firmware

Reference links

https://raw.githubusercontent.com/reidmefirst/vuln-disclosure/main/2021-02.txt

CVE-2021-35977 - Digi Connect Es Firmware, Digi One Iap Family Firmware and Digi Realport

Affected software

Reference links

Get alerted to vulnerabilities in your software