Properly formatted POST requests to multiple resources on the HTTP and HTTPS web servers of the Digi PortServer TS 16 Rack device do not require authentication or authentication tokens. This vulnerability could allow an malicious user to enable the SNMP service and manipulate the community strings to achieve further control in.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
digi portserver_ts_16_firmware 82000684 |
||
digi portserver_ts_16_firmware 82000685 |