CVE-2021-36767

Published: Oct 8, 2021Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

In Digi RealPort through 4.10.490, authentication relies on a challenge-response mechanism that gives access to the server password, making the protection ineffective. An attacker may send an unauthenticated request to the server. The server will reply with a weakly-hashed version of the server's access password. The attacker may then crack this hash offline in order to successfully login to the server.

Affected (20)

Products: Digi: Realport, Connectport Ts 8/16 Firmware, Connectport Lts 8/16/32 Firmware, Passport Integrated Console Server Firmware, Cm Firmware, Portserver Ts Firmware, Portserver Ts Mei Firmware, Portserver Ts Mei Hardened Firmware, Portserver Ts M Mei Firmware, 6350 Sr Firmware, Portserver Ts P Mei Firmware, Transport Wr11 Xt Firmware, One Ia Firmware, Wr31 Firmware, Wr44 R Firmware, Connect Es Firmware, Wr21 Firmware, One Iap Firmware, One Iap Haz Firmware

Digi

19 products

Realport

Connectport Ts 8/16 Firmware

Connectport Lts 8/16/32 Firmware

Passport Integrated Console Server Firmware

Cm Firmware

Portserver Ts Firmware

Portserver Ts Mei Firmware

Portserver Ts Mei Hardened Firmware

Portserver Ts M Mei Firmware

6350 Sr Firmware

Portserver Ts P Mei Firmware

Transport Wr11 Xt Firmware

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Digi Realport	Up to 1.9-40
Digi Realport	Up to 4.10.490

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi Connectport Ts 8/16 Firmware	All versions

Running on/with	Platform Versions
Digi Connectport Ts 8/16	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi Connectport Lts 8/16/32 Firmware	All versions

Running on/with	Platform Versions
Digi Connectport Lts 8/16/32	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi Passport Integrated Console Server Firmware	All versions

Running on/with	Platform Versions
Digi Passport Integrated Console Server	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi Cm Firmware	All versions

Running on/with	Platform Versions
Digi Cm	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi Portserver Ts Firmware	All versions

Running on/with	Platform Versions
Digi Portserver Ts	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi Portserver Ts Mei Firmware	All versions

Running on/with	Platform Versions
Digi Portserver Ts Mei	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi Portserver Ts Mei Hardened Firmware	All versions

Running on/with	Platform Versions
Digi Portserver Ts Mei Hardened	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi Portserver Ts M Mei Firmware	All versions

Running on/with	Platform Versions
Digi Portserver Ts M Mei	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi 6350 Sr Firmware	All versions

Running on/with	Platform Versions
Digi 6350 Sr	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi Portserver Ts P Mei Firmware	All versions

Running on/with	Platform Versions
Digi Portserver Ts P Mei	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi Transport Wr11 Xt Firmware	All versions

Running on/with	Platform Versions
Digi Transport Wr11 Xt	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi One Ia Firmware	All versions

Running on/with	Platform Versions
Digi One Ia	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi Wr31 Firmware	All versions

Running on/with	Platform Versions
Digi Wr31	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi Wr44 R Firmware	All versions

Running on/with	Platform Versions
Digi Wr44 R	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi Connect Es Firmware	All versions

Running on/with	Platform Versions
Digi Connect Es	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi Wr21 Firmware	All versions

Running on/with	Platform Versions
Digi Wr21	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi One Iap Firmware	All versions

Running on/with	Platform Versions
Digi One Iap	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Digi One Iap Haz Firmware	All versions

Running on/with	Platform Versions
Digi One Iap Haz	All versions

Related CWEs

CWE-916

Use of Password Hash With Insufficient Computational Effort

The product generates a hash for a password, but it uses a scheme that does not provide a sufficient level of computational effort that would make password cracking attacks infeasible or expensive.

References (2)

https://raw.githubusercontent.com/reidmefirst/vuln-disclosure/main/2021-02.txt

Source: cve@mitre.org

Third Party Advisory

https://raw.githubusercontent.com/reidmefirst/vuln-disclosure/main/2021-02.txt

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.