Home > Support > Knowledge Base
Knowledge Base
 
Reset Search
Search
 

 

Knowledge

ConnectPort X2 - RomPager - Evaluation of Security Vulnerability – VU#561444 Expanded info on CVE-2014-9222, CVE-2014-9223

« Go Back

Information

 
Article Number000007203
Problem Resolution
Overview
Many Digi products contain and use the RomPager by Allegrosoft web server technology. It has come to our attention that this embedded web server, which is used for management of our devices contains what we have defined as a critical vulnerability. We urge any customer who may have one of these products where the administrative webserver is available on non-secure networks to either upgrade the firmware to a patched version or to disable the web server for management of these devices.


Affected Products
ConnectPort X2

ConnectPort X2 Firmware Downloads

 
Product FamilyPart NumberDescriptionNew FirmwareLink to upgrade
ConnectPort X2X2-A11-EM-AConnectPort X2B S1 9210 8/162.17.1.2Download
 X2-A11-EM-WConnectPort X2 S1 Ethernet 9210 8/16 Int2.17.1.2Download
 X2-HMA-EM-WCPX2 DM900HP Ethernet AU32.17.1.2Download
 X2-HMU-EM-ACPX2 900HP Ethernet2.17.1.2Download
 X2-M91-EM-AConnectPort X2B DM 900 Pro 9210 8/162.17.1.2Download
 X2-M11-EM-AConnectPort X2B DM 24 Pro 9210 8/162.17.1.2Download
 X2-M11-EM-WConnectPort X2 DM 2.4 Pro Ethernet 9210 8/16 Int2.17.1.2Download
 X2-P81-EM-WConnectPort X2B 868 Pro 9210 8/162.17.1.2Download
 X2-S11-EM-ACPX2, XSC 9.6K Eth 92102.17.1.2Download
 X2-T11-EM-AConnectPort X2 9XTend2.17.1.2Download
 X2-Z11-EM-AConnectPort X2 ZB Ethernet 9210 w/Python 8/162.17.1.2Download
 X2-Z11-EM-I097ConnectPort X2 ZB Eth 9210 Nalco2.17.1.2Download
 X2-Z11-EM-WConnectPort X2 ZB Ethernet 9210 8/16 Int2.17.1.2Download
 X2-Z11-EM-WI097ConnectPort X2 ZB Eth 9210 Nalco Int2.17.1.2Download

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255