Digisol
Products
8- 5 CVEs
- 3 CVEs
- 2 CVEs
- 2 CVEs
- 2 CVEs
- 1 CVE
- 1 CVE
- 0 CVEs
Recent CVEs
15| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-12706 | Cri | 0.68 | 9.8 | 0.10 | Jun 24, 2018 | DIGISOL DG-BR4000NG devices have a Buffer Overflow via a long Authorization HTTP header. | ||
| CVE-2017-6896 | Hig | 0.60 | 8.8 | 0.04 | Mar 14, 2017 | Privilege escalation vulnerability on the DIGISOL DG-HR1400 1.00.02 wireless router enables an attacker to escalate from user privilege to admin privilege just by modifying the Base64-encoded session cookie value. | ||
| CVE-2024-2257 | Cri | 0.59 | 9.1 | 0.01 | May 14, 2024 | This vulnerability exists in Digisol Router (DG-GR1321: Hardware version 3.7L; Firmware version : v3.2.02) due to improper implementation of password policies. An attacker with physical access could exploit this by creating password that do not adhere to the defined security… | ||
| CVE-2025-53757 | Hig | 0.57 | — | 0.00 | Jul 16, 2025 | This vulnerability exists in Digisol DG-GR6821AC Router due to misconfiguration of both Secure and HttpOnly flags on session cookies associated with the router web interface. A remote attacker could exploit this vulnerability by capturing the session cookies transmitted over an… | ||
| CVE-2025-53756 | Hig | 0.57 | — | 0.00 | Jul 16, 2025 | This vulnerability exists in Digisol DG-GR6821AC Router due to cleartext transmission of credentials in its web management interface. A remote attacker could exploit this vulnerability by intercepting the network traffic and capturing cleartext credentials. Successful… | ||
| CVE-2017-6127 | Hig | 0.57 | 8.8 | 0.01 | Feb 21, 2017 | Multiple cross-site request forgery (CSRF) vulnerabilities in the access portal on the DIGISOL DG-HR1400 Wireless Router with firmware 1.00.02 allow remote attackers to hijack the authentication of administrators for requests that (1) change the SSID, (2) change the Wi-Fi… | ||
| CVE-2018-12705 | Med | 0.43 | 6.1 | 0.02 | Jun 24, 2018 | DIGISOL DG-BR4000NG devices have XSS via the SSID (it is validated only on the client side). | ||
| CVE-2025-53758 | Med | 0.33 | — | 0.00 | Jul 16, 2025 | This vulnerability exists in Digisol DG-GR6821AC Router due to use of default admin credentials at its web management interface. An attacker with physical access could exploit this vulnerability by extracting the firmware and reverse engineer the binary data to access the… | ||
| CVE-2025-53755 | Med | 0.33 | — | 0.00 | Jul 16, 2025 | This vulnerability exists in Digisol DG-GR6821AC Router due to storage of credentials and PINS without encryption in the device firmware. An attacker with physical access could exploit this vulnerability by extracting the firmware and reverse engineer the binary data to access… | ||
| CVE-2025-53754 | Med | 0.33 | — | 0.00 | Jul 16, 2025 | This vulnerability exists in Digisol DG-GR6821AC Router due to hard-coded Root Access Credentials in system configuration of the device firmware. An attacker with physical access could exploit this vulnerability by extracting the firmware and analyzing the binary data to obtain… | ||
| CVE-2024-4231 | Med | 0.30 | 4.6 | 0.01 | May 14, 2024 | This vulnerability exists in Digisol Router (DG-GR1321: Hardware version 3.7L; Firmware version : v3.2.02) due to presence of root terminal access on a serial interface without proper access control. An attacker with physical access could exploit this by identifying UART… | ||
| CVE-2024-4232 | Med | 0.27 | 4.1 | 0.00 | May 14, 2024 | This vulnerability exists in Digisol Router (DG-GR1321: Hardware version 3.7L; Firmware version : v3.2.02) due to lack of encryption or hashing in storing of passwords within the router's firmware/ database. An attacker with physical access could exploit this by extracting the… | ||
| CVE-2020-35262 | 0.00 | — | 0.01 | Jan 6, 2021 | Cross Site Scripting (XSS) vulnerability in Digisol DG-HR3400 can be exploited via the NTP server name in Time and date module and "Keyword" in URL Filter. | |||
| CVE-2018-14027 | 0.00 | — | 0.01 | Jul 5, 2019 | Digisol Wireless Wifi Home Router HR-3300 allows XSS via the userid or password parameter to the admin login page. | |||
| CVE-2018-12715 | 0.00 | — | 0.01 | Jul 3, 2019 | DIGISOL DG-HR3400 devices have XSS via a modified SSID when the apssid value is unchanged. |
- risk 0.68cvss 9.8epss 0.10
DIGISOL DG-BR4000NG devices have a Buffer Overflow via a long Authorization HTTP header.
- risk 0.60cvss 8.8epss 0.04
Privilege escalation vulnerability on the DIGISOL DG-HR1400 1.00.02 wireless router enables an attacker to escalate from user privilege to admin privilege just by modifying the Base64-encoded session cookie value.
- risk 0.59cvss 9.1epss 0.01
This vulnerability exists in Digisol Router (DG-GR1321: Hardware version 3.7L; Firmware version : v3.2.02) due to improper implementation of password policies. An attacker with physical access could exploit this by creating password that do not adhere to the defined security…
- risk 0.57cvss —epss 0.00
This vulnerability exists in Digisol DG-GR6821AC Router due to misconfiguration of both Secure and HttpOnly flags on session cookies associated with the router web interface. A remote attacker could exploit this vulnerability by capturing the session cookies transmitted over an…
- risk 0.57cvss —epss 0.00
This vulnerability exists in Digisol DG-GR6821AC Router due to cleartext transmission of credentials in its web management interface. A remote attacker could exploit this vulnerability by intercepting the network traffic and capturing cleartext credentials. Successful…
- risk 0.57cvss 8.8epss 0.01
Multiple cross-site request forgery (CSRF) vulnerabilities in the access portal on the DIGISOL DG-HR1400 Wireless Router with firmware 1.00.02 allow remote attackers to hijack the authentication of administrators for requests that (1) change the SSID, (2) change the Wi-Fi…
- risk 0.43cvss 6.1epss 0.02
DIGISOL DG-BR4000NG devices have XSS via the SSID (it is validated only on the client side).
- risk 0.33cvss —epss 0.00
This vulnerability exists in Digisol DG-GR6821AC Router due to use of default admin credentials at its web management interface. An attacker with physical access could exploit this vulnerability by extracting the firmware and reverse engineer the binary data to access the…
- risk 0.33cvss —epss 0.00
This vulnerability exists in Digisol DG-GR6821AC Router due to storage of credentials and PINS without encryption in the device firmware. An attacker with physical access could exploit this vulnerability by extracting the firmware and reverse engineer the binary data to access…
- risk 0.33cvss —epss 0.00
This vulnerability exists in Digisol DG-GR6821AC Router due to hard-coded Root Access Credentials in system configuration of the device firmware. An attacker with physical access could exploit this vulnerability by extracting the firmware and analyzing the binary data to obtain…
- risk 0.30cvss 4.6epss 0.01
This vulnerability exists in Digisol Router (DG-GR1321: Hardware version 3.7L; Firmware version : v3.2.02) due to presence of root terminal access on a serial interface without proper access control. An attacker with physical access could exploit this by identifying UART…
- risk 0.27cvss 4.1epss 0.00
This vulnerability exists in Digisol Router (DG-GR1321: Hardware version 3.7L; Firmware version : v3.2.02) due to lack of encryption or hashing in storing of passwords within the router's firmware/ database. An attacker with physical access could exploit this by extracting the…
- CVE-2020-35262Jan 6, 2021risk 0.00cvss —epss 0.01
Cross Site Scripting (XSS) vulnerability in Digisol DG-HR3400 can be exploited via the NTP server name in Time and date module and "Keyword" in URL Filter.
- CVE-2018-14027Jul 5, 2019risk 0.00cvss —epss 0.01
Digisol Wireless Wifi Home Router HR-3300 allows XSS via the userid or password parameter to the admin login page.
- CVE-2018-12715Jul 3, 2019risk 0.00cvss —epss 0.01
DIGISOL DG-HR3400 devices have XSS via a modified SSID when the apssid value is unchanged.