An issue exists in Digi RealPort up to and including 4.8.488.0. The 'encrypted' mode is vulnerable to man-in-the-middle attacks and does not perform authentication.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
digi realport |
||
digi connectport ts 8/16 firmware |
||
digi connectport lts 8/16/32 firmware |
||
digi passport integrated console server firmware |
||
digi cm firmware |
||
digi portserver ts firmware |
||
digi portserver ts mei firmware |
||
digi portserver ts mei hardened firmware |
||
digi portserver ts m mei firmware |
||
digi 6350-sr firmware |
||
digi portserver ts p mei firmware |
||
digi transport wr11 xt firmware |
||
digi one iap family firmware |
||
digi one ia firmware |
||
digi wr31 firmware |
||
digi wr44 r firmware |
||
digi connect es firmware |
||
digi wr21 firmware |
Vulmon