ICSA-22-216-01 · Published 2022-08-04 · View on CISA ICS-CERT ↗

Digi ConnectPort X2D

CVSS 10.0 CRITICAL

Risk Summary

Successful exploitation of this vulnerability could allow an attacker to execute malicious actions resulting in code execution.

CVE-2022-2634

Digi International indicated this vulnerability does not exist in ConnectPort gateways manufactured after January 2020. It is recommended to contact Digi International support for assistance with impacted devices manufactured prior to January 2020.

Digi International, Inc.

Digi International, Inc. · Digi ConnectPort X2D Gateway < january 2020

Multiple Sectors

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.