← Back to home
ICSA-23-243-04  ·  Published 2023-08-31  ·  View on CISA ICS-CERT ↗

Digi RealPort Protocol

CVSS 9.0 CRITICAL

Risk Summary

Successful exploitation of this vulnerability could allow the attacker to access connected equipment.

CVEs (1)

Remediations

  • Digi International recommends users acquire and install patches that they have made available for the following products:
  • Digi RealPort software for Windows: Fixed in 4.10.490
  • Digi ConnectPort TS 8/16: Fixed in firmware version 2.26.2.4
  • Digi ConnectPort LTS 8/16/32: Fixed in version 1.4.9
  • Digi Connect ES: Fixed in firmware version 2.26.2.4
  • For more information, see the customer notification document published by Digi International.
  • Dragos recommends restricting access to Digi devices on TCP/771 (default) or TCP/1027 (if encryption is enabled, this is the default port). Only allow the workstations which initiate RealPort connections to communicate to the field equipment on those ports. Note that most of Digi's devices allow you to change the setting for which TCP port the RealPort service runs on, so end users should consult their device configuration and restrict access to the configured port if it is not the default.
  • If using the system in 'reverse' mode, where the Digi device calls back to the Windows or Linux workstation, then Dragos recommends restricting access to the workstation on TCP/771 or TCP/1027 to known Digi RealPort devices on your network. This port may be configured by end users, so consult the workstation and device configurations to ensure coverage.

Affected Vendors

Digi International, Inc.

Affected Products (23)

Digi International, Inc. · Digi RealPort for Windows <= 4.8.488.0
Digi International, Inc. · Digi RealPort for Linux <= 1.9-40
Digi International, Inc. · Digi ConnectPort TS 8/16 < 2.26.2.4
Digi International, Inc. · Digi Passport Console Server vers:all/*
Digi International, Inc. · Digi ConnectPort LTS 8/16/32 < 1.4.9
Digi International, Inc. · Digi CM Console Server vers:all/*
Digi International, Inc. · Digi PortServer TS vers:all/*
Digi International, Inc. · Digi PortServer TS MEI vers:all/*
Digi International, Inc. · Digi PortServer TS MEI Hardened vers:all/*
Digi International, Inc. · Digi PortServer TS M MEI vers:all/*
Digi International, Inc. · Digi PortServer TS P MEI vers:all/*
Digi International, Inc. · Digi One IAP Family vers:all/*
Digi International, Inc. · Digi One IA vers:all/*
Digi International, Inc. · Digi One SP IA vers:all/*
Digi International, Inc. · Digi One SP vers:all/*
Digi International, Inc. · Digi WR31 vers:all/*
Digi International, Inc. · Digi WR11 XT vers:all/*
Digi International, Inc. · Digi WR44 R vers:all/*
Digi International, Inc. · Digi WR21 vers:all/*
Digi International, Inc. · Digi Connect ES < 2.26.2.4
Digi International, Inc. · Digi Connect SP vers:all/*
Digi International, Inc. · Digi 6350-SR vers:all/*
Digi International, Inc. · Digi ConnectCore 8X products vers:all/*

Affected Sectors

Multiple Sectors

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more