Authentication Bypass Vulnerability in Digi Devices
CVE-2026-12352

5.9MEDIUM

What is CVE-2026-12352?

This vulnerability enables an unauthenticated individual to bypass authentication mechanisms within Digi devices, allowing unauthorized access to sensitive resources. Such exploitation could lead to significant security breaches, emphasizing the need for users to secure their devices against unauthorized access by applying updates and following recommended security practices.

Affected Version(s)

Digi One SP / SP IA / IA 82000774-W <= 93000459_AB

PortServer TS 1/2/4 82000747_V1 <= 82000747_AB

References

CVSS V3.1

Score:
5.9
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.