Network Products - RomPager - Evaluation of Security Vulnerability – VU#561444 Expanded info on CVE-2014-9222, CVE-2014-9223

Many Digi products contain and use the RomPager by Allegrosoft web server technology. It has come to our attention that this embedded web server, which is used for management of our devices contains what we have defined as a critical vulnerability. We urge any customer who may have one of these products where the administrative webserver is available on non-secure networks to either upgrade the firmware to a patched version or to disable the web server for management of these devices.

Affected Products
ConnecPort TS8/16,
ConnectPort TS 4x4/4x2, Connect ES, Connect SP, Connect Wi-SP, Connect N2S, AnywhereUSB

Network Product Family Firmware Downloads

Product FamilyPart NumberDescriptionNew FirmwareLink to upgrade
ConnectPort TS 8/1650001346-03ConnectPort TS 8 MEI2.19.1.2Download
 70002329ConnectPort TS 8 MEI Dom2.19.1.2Download
 70002330ConnectPort TS 8 MEI Int'l2.19.1.2Download
 50001346-04ConnectPort TS
 70002323ConnectPort TS 8 Dom2.19.1.2Download
 70002324ConnectPort TS 8 Int'l2.19.1.2Download
 50001551-01ConnectPort TS
 70002388ConnectPort TS 16 Dom2.19.1.2Download
 70002389ConnectPort TS 16 Int'l2.19.1.2Download
 50001551-03ConnectPort TS 16 MEI2.19.1.2Download
 70002534ConnectPort TS 16 MEI Dom2.19.1.2Download
 70002535ConnectPort TS 16 MEI Int2.19.1.2Download
 50001551-04ConnectPort TS 16 RS 232 48Vin2.19.1.2Download
 70002538ConnectPort TS 16 48VDC2.19.1.2Download
ConnectPort TS 4x4/4x250001662-02ConnectPort TS 4x42.8.10.1Download
 50001662-03ConnectPort TS 4x22.8.10.1Download
 CPTS-4R4EConnectPort TS 4x42.8.10.1Download
 CPTS-4R2EConnectPort TS 4x22.8.10.1Download
Connect ES50001320-17Connect ES 8,4+1 SB EU2.15.0.13Download
 DC-ES-8SB-SW-EUConnect ES 8,4+1 SB EU2.15.0.13Download
 50001320-18Connect ES G2 8Ser/1Ether2.15.0.13Download
 DC-ES-8SB-EUDigi Connect ES 8 SB EU2.15.0.13Download
 50001320-19Connect ES G2 4Ser/5Ether2.15.0.13Download
 DC-ES-4SB-SW-EUConnect ES 4,4+1 SB EU2.15.0.13Download
 50001320-20Connect ES G2 4Ser/1Ether2.15.0.13Download
 DC-ES-4SB-EUConnect ES 4 SB EU2.15.0.13Download
Connect SP50001340-19Connect SP -S MEI noPOE noJTAG Python2.12.4Download
 DC-SP-01-SConnect SP -S Domestic2.12.4Download
 DC-SP-01-S-WConnect SP -S International2.12.4Download
Connect Wi-SP50001312-18Connect Wi-SP -S Python2.17.6.4Download
 DC-WSP-01-SConnect Wi-SP Domestic2.17.6.4Download
 DC-WSP-01-S-WConnect Wi-SP International2.17.6.4Download
Connect N2S50001375-01Connect N2S-1702.17.6.4Download
 DC-N2S-170-SConnect N2S-1702.17.6.4Download
 AW-USB-14-WAnywhereUSB/14, Intlv1.92.2004Download
 50001686-03Assy,AnywhereUSB TS44v1.92.2005Download
 AW-TS-44AnywhereUSB TSv1.92.2005Download
 50001689-01Assy,Anywhere USB/2v1.92.2001Download
 AW-USB-2-WAnywhereUSB/2, Intlv1.92.2001Download
 AW-USB-5AnywhereUSB/5 Gen2v1.92.2001Download
 AW-USB-5-WAnywhereUSB/5 Intl Gen2v1.92.2001Download
 50001698-04AnywhereUSB/5 MHCv1.92.2003Download
 AW-USB-5MAnywhereUSB/5 MHCv1.92.2003Download
 AW-USB-5M-WAnywhereUSB/5 MHC Intlv1.92.2003Download
Last updated: Aug 08, 2017

Recently Viewed Articles

No recently viewed articles