Lucene search

K

6350-sr Firmware Security Vulnerabilities

cve
cve

CVE-2021-35979

An issue was discovered in Digi RealPort through 4.8.488.0. The 'encrypted' mode is vulnerable to man-in-the-middle attacks and does not perform...

8.1CVSS

7.9AI Score

0.001EPSS

2021-10-08 03:15 PM
22
cve
cve

CVE-2021-35977

An issue was discovered in Digi RealPort for Windows through 4.8.488.0. A buffer overflow exists in the handling of ADDP discovery response messages. This could result in arbitrary code...

9.8CVSS

9.8AI Score

0.002EPSS

2021-10-08 03:15 PM
27
cve
cve

CVE-2021-36767

In Digi RealPort through 4.10.490, authentication relies on a challenge-response mechanism that gives access to the server password, making the protection ineffective. An attacker may send an unauthenticated request to the server. The server will reply with a weakly-hashed version of the server's.....

9.8CVSS

9.5AI Score

0.001EPSS

2021-10-08 03:15 PM
33