CVE-2022-26952

HIGH

Digi Passport Firmware <1.5.1 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-26952. PoCs published by X-C3LL.

AI-analyzed exploit summary The repository contains functional exploit code demonstrating a buffer overflow vulnerability in Digi Passport firmware via insecure use of sprintf() in the 'webs' binary. The PoC includes Python scripts to trigger the overflow in two endpoints ('ilo.asp' and 'reboot.asp'), leading to stack corruption and segmentation faults.

Description

Digi Passport Firmware through 1.5.1,1 is affected by a buffer overflow in the function for building the Location header string when an unauthenticated user is redirected to the authentication page.

Exploits (1)

github WORKING POC 11 stars
by X-C3LL · pythonpoc
https://github.com/X-C3LL/PoC-CVEs/tree/master/CVE-2022-26952 & CVE-2022-26953

The repository contains functional exploit code demonstrating a buffer overflow vulnerability in Digi Passport firmware via insecure use of sprintf() in the 'webs' binary. The PoC includes Python scripts to trigger the overflow in two endpoints ('ilo.asp' and 'reboot.asp'), leading to stack corruption and segmentation faults.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Digi Passport (Firmware 1.5.1,1 - 7/11/2021)
No auth needed
Prerequisites: Network access to the vulnerable device · Ability to send crafted HTTP requests to the web administration service
devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 7.5
EPSS 0.0198
EPSS Percentile 77.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-787
Status published
Products (1)
digi/passport_firmware < 1.5.1.1
Published Apr 06, 2022
Tracked Since Feb 18, 2026