CVE-2021-35979 - Digi Realport, Digi 6350-sr Firmware and Digi One Ia Firmware

Critical 8.1

An issue was discovered in Digi RealPort through 4.8.488.0. The 'encrypted' mode is vulnerable to man-in-the-middle attacks and does not perform authentication.

Affected software

Digi Realport

Digi 6350-sr Firmware

Digi One Ia Firmware

Digi Portserver Ts M Mei Firmware

Digi Connectport Ts 8\/16 Firmware

Digi Transport Wr11 Xt Firmware

Digi Connectcore 8x Firmware

Digi Portserver Ts Mei Firmware

Digi One Iap Family Firmware

Digi Portserver Ts Firmware

Digi Connect Es Firmware

Digi Portserver Ts P Mei Firmware

Digi Wr44 R Firmware

Digi Wr21 Firmware

Digi Connectport Lts 8\/16\/32 Firmware

Digi Portserver Ts Mei Hardened Firmware

Digi Cm Firmware

Digi Passport Integrated Console Server Firmware

Digi Wr31 Firmware

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.