fkie_nvd - fkie_cve-2023-4299

fkie_cve-2023-4299

Vulnerability from fkie_nvd

Published

2023-08-31 21:15

Modified

2024-11-21 08:34

Severity ?

9.0 (Critical) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
8.1 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

Digi RealPort Protocol is vulnerable to a replay attack that may allow an attacker to bypass authentication to access connected equipment.

References

URL	Tags
ics-cert@hq.dhs.gov	https://www.cisa.gov/news-events/ics-advisories/icsa-23-243-04	Third Party Advisory, US Government Resource
ics-cert@hq.dhs.gov	https://www.digi.com/getattachment/resources/security/alerts/realport-cves/Dragos-Disclosure-Statement.pdf	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.cisa.gov/news-events/ics-advisories/icsa-23-243-04	Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	https://www.digi.com/getattachment/resources/security/alerts/realport-cves/Dragos-Disclosure-Statement.pdf	Vendor Advisory

Impacted products

Vendor	Product	Version
digi	realport	*
digi	realport	*
digi	connectport_ts_8\/16_firmware	*
digi	connectport_ts_8\/16	-
digi	passport_firmware	-
digi	passport	-
digi	connectport_lts_8\/16\/32_firmware	*
digi	connectport_lts_8\/16\/32	-
digi	cm_firmware	-
digi	cm	-
digi	portserver_ts_firmware	-
digi	portserver_ts	-
digi	portserver_ts_mei_firmware	-
digi	portserver_ts_mei	-
digi	portserver_ts_mei_hardened_firmware	-
digi	portserver_ts_mei_hardened	-
digi	portserver_ts_m_mei_firmware	-
digi	portserver_ts_m_mei	-
digi	portserver_ts_p_mei_firmware	-
digi	portserver_ts_p_mei	-
digi	one_iap_firmware	-
digi	one_iap	-
digi	one_ia_firmware	-
digi	one_ia	-
digi	one_sp_ia_firmware	-
digi	one_sp_ia	-
digi	one_sp_firmware	-
digi	one_sp	-
digi	wr31_firmware	-
digi	wr31	-
digi	transport_wr11_xt_firmware	-
digi	transport_wr11_xt	-
digi	wr44_r_firmware	-
digi	wr44_r	-
digi	wr21_firmware	-
digi	wr21	-
digi	connect_es_firmware	*
digi	connect_es	-
digi	connect_sp_firmware	-
digi	connect_sp	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:digi:realport:*:*:*:*:*:linux:*:*",
              "matchCriteriaId": "D59A75BB-9159-4631-BC71-39969604EB41",
              "versionEndIncluding": "1.9-40",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:digi:realport:*:*:*:*:*:windows:*:*",
              "matchCriteriaId": "4051C215-7A7D-44AF-8194-ABB054C8C0AA",
              "versionEndIncluding": "4.8.488.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:connectport_ts_8\\/16_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "140FCBA8-D74A-4889-9581-2A1E354DE70B",
              "versionEndExcluding": "2.26.2.4",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:connectport_ts_8\\/16:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E90551D8-A6FF-40EE-BE92-C60D3CCF9FD6",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:passport_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "42EC9732-7287-4295-9A45-BAEB9C3D7D52",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:passport:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6129E3F-BB64-47B1-8041-F955CAD1A139",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:connectport_lts_8\\/16\\/32_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "4974BD84-B144-45C6-BA1D-E651FA93F8C1",
              "versionEndExcluding": "1.4.9",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:connectport_lts_8\\/16\\/32:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0620D1B-2856-4EDC-9BD4-F450375EF2B6",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:cm_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "580B6AD7-98A4-4656-BC4B-EEBC15D86BFA",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:cm:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1A9DDFA4-8F21-47E4-97D0-3B135072E273",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:portserver_ts_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "89CC1603-A6ED-48A2-AC9B-EC11F00E0C02",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:portserver_ts:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FE6377CC-097B-4775-9964-338A3CFA87CA",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:portserver_ts_mei_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "ACE660D5-F5D8-4449-9A11-61A290E8B6A5",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:portserver_ts_mei:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C8206DA8-2823-4116-9E76-975C9A3F2EF7",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:portserver_ts_mei_hardened_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7A1C8BFC-EA8C-45A9-8391-A578BD2129BB",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:portserver_ts_mei_hardened:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "817E2152-5A72-4B88-A1A1-8CFEFA134979",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:portserver_ts_m_mei_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "70583280-A89A-470B-B8C3-DF8151F43D79",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:portserver_ts_m_mei:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8FC7BF4B-3C56-44B2-8933-E24ACCA000E1",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:portserver_ts_p_mei_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "07964E3F-C71E-455C-90C1-E59350924F92",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:portserver_ts_p_mei:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C711FEFA-0A37-4B97-AAC0-D0330D9F5E55",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:one_iap_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "01501047-CD6D-490C-984E-441939D077A4",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:one_iap:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0CF501FC-E102-4D8D-A2B7-6F9D0F444959",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:one_ia_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1E409760-A00D-4485-BACD-5EE5453BA1BA",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:one_ia:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7BE8C4FB-9DB5-4A32-8EFC-69B746BF2E33",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:one_sp_ia_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1AB7FF5F-02DE-4848-AA66-9F71CEBEDB5B",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:one_sp_ia:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A6B2D2BF-01FA-4F15-A747-CB315E27E94E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:one_sp_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "61E623C5-610E-4B76-81DE-94B9783E3B17",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:one_sp:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "85CDFA6C-067B-4D3B-8448-034286F36E69",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:wr31_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "24D3E7C4-92B1-4C98-A9EE-0D1B0F00914D",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:wr31:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A9F02872-5C53-419B-902C-4906E546C8B7",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:transport_wr11_xt_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "76684195-7836-4EDF-AE59-CB4A5CE938AD",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:transport_wr11_xt:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "10850ACB-E28F-4AC7-ABA0-EDFF2D2F9EF6",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:wr44_r_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4D08ACA8-BF3A-4401-AB11-1D92CA7933A1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:wr44_r:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8F5E08FD-5872-4E42-BDA7-2B15CF49C06D",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:wr21_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4FE33679-08C1-4133-8D51-05B1EBC21B99",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:wr21:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3EC0E5E9-FBFE-4C99-9C68-6322B255BE88",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:connect_es_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "36063F6A-E10E-45FF-98D4-F90A995428C5",
              "versionEndExcluding": "2.26.2.4",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:connect_es:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7EF02532-005E-4246-AA51-DAC2EA1726FF",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digi:connect_sp_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9732CC2E-BD0F-4528-819C-A214B4810C2B",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:digi:connect_sp:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EAF15AE4-A3AD-4AB2-AFCA-05C1946972F6",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "\nDigi RealPort Protocol is vulnerable to a replay attack that may allow an attacker to bypass authentication to access connected equipment.\n\n"
    },
    {
      "lang": "es",
      "value": "El protocolo Digi RealPort es vulnerable a un ataque de repetici\u00f3n que puede permitir a un atacante saltarse la autenticaci\u00f3n para acceder a los equipos conectados. "
    }
  ],
  "id": "CVE-2023-4299",
  "lastModified": "2024-11-21T08:34:48.760",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.0,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 6.0,
        "source": "ics-cert@hq.dhs.gov",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.1,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2023-08-31T21:15:09.183",
  "references": [
    {
      "source": "ics-cert@hq.dhs.gov",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-243-04"
    },
    {
      "source": "ics-cert@hq.dhs.gov",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.digi.com/getattachment/resources/security/alerts/realport-cves/Dragos-Disclosure-Statement.pdf"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-243-04"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.digi.com/getattachment/resources/security/alerts/realport-cves/Dragos-Disclosure-Statement.pdf"
    }
  ],
  "sourceIdentifier": "ics-cert@hq.dhs.gov",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-836"
        }
      ],
      "source": "ics-cert@hq.dhs.gov",
      "type": "Primary"
    }
  ]
}

CVE-2023-4299 (GCVE-0-2023-4299)

Vulnerability from cvelistv5

Published

2023-08-31 20:45

Modified

2025-01-16 21:30

Severity ?

9.0 (Critical) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE

CWE-836

Summary

Digi RealPort Protocol is vulnerable to a replay attack that may allow an attacker to bypass authentication to access connected equipment.

References

►

URL

Tags

	https://www.cisa.gov/news-events/ics-advisories/icsa-23-243-04
	https://www.digi.com/getattachment/resources/security/alerts/realport-cves/Dragos-Disclosure-Statement.pdf

Impacted products

Vendor

Product

Version

►

Digi International

Digi RealPort

Version: 0 <

Digi International	Digi RealPort	Version: 0 <
Digi International	Digi ConnectPort TS 8/16	Version: 0 < 2.26.2.4
Digi International	Digi Passport Console Server	Version: all versions
Digi International	Digi ConnectPort LTS 8/16/32	Version: 0 < 1.4.9
Digi International	Digi CM Console Server	Version: all versions
Digi International	Digi PortServer TS	Version: all versions
Digi International	Digi PortServer TS MEI	Version: all versions
Digi International	Digi PortServer TS MEI Hardened	Version: all versions
Digi International	Digi PortServer TS M MEI	Version: all versions
Digi International	Digi PortServer TS P MEI	Version: all versions
Digi International	Digi One IAP Family	Version: all versions
Digi International	Digi One IA	Version: all versions
Digi International	Digi One SP IA	Version: all versions
Digi International	Digi One SP	Version: all versions
Digi International	Digi WR31	Version: all versions
Digi International	Digi WR11 XT	Version: all versions
Digi International	Digi WR44 R	Version: all versions
Digi International	Digi WR21	Version: all versions
Digi International	Digi Connect ES	Version: 0 < 2.26.2.4
Digi International	Digi Connect SP	Version: all versions
Digi International	Digi 6350-SR
Digi International	Digi ConnectCore 8X products

Show details on NVD website