First published: Mon Feb 10 2020(Updated: )
Digi TransPort WR21 5.2.2.3, WR44 5.1.6.4, and WR44v2 5.1.6.9 devices allow stored XSS in the web application.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Digi Transport Wr21 Firmware | =5.2.2.3 | |
Digi TransPort WR21 | ||
Digi Transport Wr44 Firmware | =5.1.6.4 | |
Digi Transport Wr44 | ||
Digi Transport Wr44 Firmware | =5.1.6.9 | |
Digi Transport Wr44 | =2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-8822 is a vulnerability in Digi TransPort WR21 5.2.2.3, WR44 5.1.6.4, and WR44v2 5.1.6.9 devices that allows stored XSS in the web application.
The severity of CVE-2020-8822 is medium with a severity value of 4.8.
CVE-2020-8822 affects Digi TransPort WR21 devices with firmware version 5.2.2.3.
CVE-2020-8822 affects Digi TransPort WR44 devices with firmware versions 5.1.6.4 and 5.1.6.9.
To mitigate the risk of the CVE-2020-8822 vulnerability, it is recommended to update the firmware of the affected Digi TransPort devices to a non-vulnerable version.