{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-27T08:03:04.152","vulnerabilities":[{"cve":{"id":"CVE-2023-4299","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2023-08-31T21:15:09.183","lastModified":"2026-06-17T06:37:31.580","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"\nDigi RealPort Protocol is vulnerable to a replay attack that may allow an attacker to bypass authentication to access connected equipment.\n\n"},{"lang":"es","value":"El protocolo Digi RealPort es vulnerable a un ataque de repetición que puede permitir a un atacante saltarse la autenticación para acceder a los equipos conectados. "}],"affected":[{"source":"ics-cert@hq.dhs.gov","affectedData":[{"vendor":"Digi International ","product":"Digi RealPort","defaultStatus":"unaffected","platforms":["Windows"],"versions":[{"version":"0","lessThanOrEqual":"4.8.488.0","versionType":"custom","status":"affected"}]},{"vendor":"Digi International ","product":"Digi RealPort","defaultStatus":"unaffected","platforms":["Linux"],"versions":[{"version":"0","lessThanOrEqual":"1.9-40","versionType":"custom","status":"affected"}]},{"vendor":"Digi International ","product":"Digi ConnectPort TS 8/16","defaultStatus":"unaffected","versions":[{"version":"0","lessThan":"2.26.2.4","versionType":"custom","status":"affected"}]},{"vendor":"Digi International ","product":"Digi Passport Console Server","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"affected"}]},{"vendor":"Digi International ","product":"Digi ConnectPort LTS 8/16/32","defaultStatus":"unaffected","versions":[{"version":"0","lessThan":"1.4.9","versionType":"custom","status":"affected"}]},{"vendor":"Digi International ","product":"Digi CM Console Server","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"affected"}]},{"vendor":"Digi International ","product":"Digi PortServer TS","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"affected"}]},{"vendor":"Digi International ","product":"Digi PortServer TS MEI","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"affected"}]},{"vendor":"Digi International ","product":"Digi PortServer TS MEI Hardened","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"affected"}]},{"vendor":"Digi International ","product":"Digi PortServer TS M MEI","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"affected"}]},{"vendor":"Digi International ","product":"Digi PortServer TS P MEI","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"affected"}]},{"vendor":"Digi International ","product":"Digi One IAP Family","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"affected"}]},{"vendor":"Digi International ","product":"Digi One IA","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"affected"}]},{"vendor":"Digi International ","product":"Digi One SP IA","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"affected"}]},{"vendor":"Digi International ","product":"​Digi One SP","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"affected"}]},{"vendor":"Digi International ","product":"Digi WR31","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"affected"}]},{"vendor":"Digi International ","product":"Digi WR11 XT","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"affected"}]},{"vendor":"Digi International ","product":"Digi WR44 R","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"affected"}]},{"vendor":"Digi International ","product":"Digi WR21","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"affected"}]},{"vendor":"Digi International ","product":"Digi Connect ES","defaultStatus":"unaffected","versions":[{"version":"0","lessThan":"2.26.2.4","versionType":"custom","status":"affected"}]},{"vendor":"Digi International ","product":"Digi Connect SP","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"affected"}]},{"vendor":"Digi International ","product":"Digi 6350-SR","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"unaffected"}]},{"vendor":"Digi International ","product":"Digi ConnectCore 8X products","defaultStatus":"unaffected","versions":[{"version":"all versions","status":"unaffected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":9.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":6.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":5.9}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2025-01-16T21:20:30.564576Z","id":"CVE-2023-4299","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-836"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:digi:realport:*:*:*:*:*:linux:*:*","versionEndIncluding":"1.9-40","matchCriteriaId":"D59A75BB-9159-4631-BC71-39969604EB41"},{"vulnerable":true,"criteria":"cpe:2.3:a:digi:realport:*:*:*:*:*:windows:*:*","versionEndIncluding":"4.8.488.0","matchCriteriaId":"4051C215-7A7D-44AF-8194-ABB054C8C0AA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:connectport_ts_8\\/16_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2.26.2.4","matchCriteriaId":"140FCBA8-D74A-4889-9581-2A1E354DE70B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:connectport_ts_8\\/16:-:*:*:*:*:*:*:*","matchCriteriaId":"E90551D8-A6FF-40EE-BE92-C60D3CCF9FD6"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:passport_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"42EC9732-7287-4295-9A45-BAEB9C3D7D52"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:passport:-:*:*:*:*:*:*:*","matchCriteriaId":"C6129E3F-BB64-47B1-8041-F955CAD1A139"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:connectport_lts_8\\/16\\/32_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.4.9","matchCriteriaId":"4974BD84-B144-45C6-BA1D-E651FA93F8C1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:connectport_lts_8\\/16\\/32:-:*:*:*:*:*:*:*","matchCriteriaId":"E0620D1B-2856-4EDC-9BD4-F450375EF2B6"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:cm_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"580B6AD7-98A4-4656-BC4B-EEBC15D86BFA"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:cm:-:*:*:*:*:*:*:*","matchCriteriaId":"1A9DDFA4-8F21-47E4-97D0-3B135072E273"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:portserver_ts_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"89CC1603-A6ED-48A2-AC9B-EC11F00E0C02"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:portserver_ts:-:*:*:*:*:*:*:*","matchCriteriaId":"FE6377CC-097B-4775-9964-338A3CFA87CA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:portserver_ts_mei_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"ACE660D5-F5D8-4449-9A11-61A290E8B6A5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:portserver_ts_mei:-:*:*:*:*:*:*:*","matchCriteriaId":"C8206DA8-2823-4116-9E76-975C9A3F2EF7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:portserver_ts_mei_hardened_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"7A1C8BFC-EA8C-45A9-8391-A578BD2129BB"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:portserver_ts_mei_hardened:-:*:*:*:*:*:*:*","matchCriteriaId":"817E2152-5A72-4B88-A1A1-8CFEFA134979"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:portserver_ts_m_mei_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"70583280-A89A-470B-B8C3-DF8151F43D79"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:portserver_ts_m_mei:-:*:*:*:*:*:*:*","matchCriteriaId":"8FC7BF4B-3C56-44B2-8933-E24ACCA000E1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:portserver_ts_p_mei_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"07964E3F-C71E-455C-90C1-E59350924F92"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:portserver_ts_p_mei:-:*:*:*:*:*:*:*","matchCriteriaId":"C711FEFA-0A37-4B97-AAC0-D0330D9F5E55"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:one_iap_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"01501047-CD6D-490C-984E-441939D077A4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:one_iap:-:*:*:*:*:*:*:*","matchCriteriaId":"0CF501FC-E102-4D8D-A2B7-6F9D0F444959"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:one_ia_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"1E409760-A00D-4485-BACD-5EE5453BA1BA"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:one_ia:-:*:*:*:*:*:*:*","matchCriteriaId":"7BE8C4FB-9DB5-4A32-8EFC-69B746BF2E33"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:one_sp_ia_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"1AB7FF5F-02DE-4848-AA66-9F71CEBEDB5B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:one_sp_ia:-:*:*:*:*:*:*:*","matchCriteriaId":"A6B2D2BF-01FA-4F15-A747-CB315E27E94E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:one_sp_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"61E623C5-610E-4B76-81DE-94B9783E3B17"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:one_sp:-:*:*:*:*:*:*:*","matchCriteriaId":"85CDFA6C-067B-4D3B-8448-034286F36E69"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:wr31_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"24D3E7C4-92B1-4C98-A9EE-0D1B0F00914D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:wr31:-:*:*:*:*:*:*:*","matchCriteriaId":"A9F02872-5C53-419B-902C-4906E546C8B7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:transport_wr11_xt_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"76684195-7836-4EDF-AE59-CB4A5CE938AD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:transport_wr11_xt:-:*:*:*:*:*:*:*","matchCriteriaId":"10850ACB-E28F-4AC7-ABA0-EDFF2D2F9EF6"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:wr44_r_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"4D08ACA8-BF3A-4401-AB11-1D92CA7933A1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:wr44_r:-:*:*:*:*:*:*:*","matchCriteriaId":"8F5E08FD-5872-4E42-BDA7-2B15CF49C06D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:wr21_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"4FE33679-08C1-4133-8D51-05B1EBC21B99"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:wr21:-:*:*:*:*:*:*:*","matchCriteriaId":"3EC0E5E9-FBFE-4C99-9C68-6322B255BE88"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:connect_es_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2.26.2.4","matchCriteriaId":"36063F6A-E10E-45FF-98D4-F90A995428C5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:connect_es:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF02532-005E-4246-AA51-DAC2EA1726FF"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:digi:connect_sp_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"9732CC2E-BD0F-4528-819C-A214B4810C2B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:digi:connect_sp:-:*:*:*:*:*:*:*","matchCriteriaId":"EAF15AE4-A3AD-4AB2-AFCA-05C1946972F6"}]}]}],"references":[{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-23-243-04","source":"ics-cert@hq.dhs.gov","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.digi.com/getattachment/resources/security/alerts/realport-cves/Dragos-Disclosure-Statement.pdf","source":"ics-cert@hq.dhs.gov","tags":["Vendor Advisory"]},{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-23-243-04","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.digi.com/getattachment/resources/security/alerts/realport-cves/Dragos-Disclosure-Statement.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}