For security vulnerability disclosure with Digi products, you can send an email to security@digi.com.
Download the Digi security public GPG/PGP key