An issue was discovered in Digi RealPort through 4.8.488.0. The 'encrypted' mode is vulnerable to man-in-the-middle attacks and does not perform authentication.
2021-10-08T15:15:08.917
2024-11-21T06:12:52.853
Modified
CVSSv3.1: 8.1 (HIGH)
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.6
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | digi | realport | ≤ 1.9-40 | Yes |
| Application | digi | realport | ≤ 4.8.488.0 | Yes |
| Operating System | digi | connectport_ts_8\/16_firmware | * | Yes |
| Hardware | digi | connectport_ts_8\/16 | - | No |
| Operating System | digi | connectport_lts_8\/16\/32_firmware | * | Yes |
| Hardware | digi | connectport_lts_8\/16\/32 | - | No |
| Operating System | digi | passport_integrated_console_server_firmware | * | Yes |
| Hardware | digi | passport_integrated_console_server | - | No |
| Operating System | digi | cm_firmware | * | Yes |
| Hardware | digi | cm | - | No |
| Operating System | digi | portserver_ts_firmware | * | Yes |
| Hardware | digi | portserver_ts | - | No |
| Operating System | digi | portserver_ts_mei_firmware | * | Yes |
| Hardware | digi | portserver_ts_mei | - | No |
| Operating System | digi | portserver_ts_mei_hardened_firmware | * | Yes |
| Hardware | digi | portserver_ts_mei_hardened | - | No |
| Operating System | digi | portserver_ts_m_mei_firmware | * | Yes |
| Hardware | digi | portserver_ts_m_mei | - | No |
| Operating System | digi | 6350-sr_firmware | * | Yes |
| Hardware | digi | 6350-sr | - | No |
| Operating System | digi | portserver_ts_p_mei_firmware | * | Yes |
| Hardware | digi | portserver_ts_p_mei | - | No |
| Operating System | digi | transport_wr11_xt_firmware | * | Yes |
| Hardware | digi | transport_wr11_xt | - | No |
| Operating System | digi | one_iap_family_firmware | * | Yes |
| Hardware | digi | one_iap_family | - | No |
| Operating System | digi | one_ia_firmware | * | Yes |
| Hardware | digi | one_ia | - | No |
| Operating System | digi | wr31_firmware | * | Yes |
| Hardware | digi | wr31 | - | No |
| Operating System | digi | wr44_r_firmware | * | Yes |
| Hardware | digi | wr44_r | - | No |
| Operating System | digi | connect_es_firmware | * | Yes |
| Hardware | digi | connect_es | - | No |
| Operating System | digi | wr21_firmware | * | Yes |
| Hardware | digi | wr21 | - | No |