Cm firmware
This hub aggregates every CVE we track for Cm firmware, a product in the ics ot iot space. Use it to gauge the current risk picture and drill into individual advisories.
4
CVEs tracked
3
Critical
1
High
0
In CISA KEV
Severity distribution
CRITICAL3HIGH1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 4 most recently published vulnerabilities affecting Cm firmware.
- CVE-2023-4299Digi RealPort Protocol Use of Password Hash Instead of Password for Authentication9.0
- CVE-2021-36767In Digi RealPort through 4.10.490, authentication relies on a challenge-response mechanism that gives access to the server password, making the protection ineffective. An attacker may send an unaut...9.8
- CVE-2021-35979An issue was discovered in Digi RealPort through 4.8.488.0. The 'encrypted' mode is vulnerable to man-in-the-middle attacks and does not perform authentication.8.1
- CVE-2021-35977An issue was discovered in Digi RealPort for Windows through 4.8.488.0. A buffer overflow exists in the handling of ADDP discovery response messages. This could result in arbitrary code execution.9.8
Product normalization is registry-driven with AI assist and human review. How it works