An issue exists in Digi RealPort up to and including 4.8.488.0. The 'encrypted' mode is vulnerable to man-in-the-middle attacks and does not perform authentication.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
digi realport |
||
digi connectport_ts_8\\/16_firmware |
||
digi connectport_lts_8\\/16\\/32_firmware |
||
digi passport_integrated_console_server_firmware |
||
digi cm_firmware |
||
digi portserver_ts_firmware |
||
digi portserver_ts_mei_firmware |
||
digi portserver_ts_mei_hardened_firmware |
||
digi portserver_ts_m_mei_firmware |
||
digi 6350-sr_firmware |
||
digi portserver_ts_p_mei_firmware |
||
digi transport_wr11_xt_firmware |
||
digi one_iap_family_firmware |
||
digi one_ia_firmware |
||
digi wr31_firmware |
||
digi wr44_r_firmware |
||
digi connect_es_firmware |
||
digi wr21_firmware |