Digi One Sp/Digi One Sp Ia/Digi One Ia
Approved changes feed: RSS · Atom
cpe:2.3:a:digi_international:digi_one_sp/digi_one_sp_ia/digi_one_ia:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Digi International (f5e7e52c-f6c9-556e-9dfa-1cc6cb27ef4a) |
|---|---|
| Product | Digi One Sp/Digi One Sp Ia/Digi One Ia (3dfd1717-e73f-5d0f-b9a3-9d3c12899dca) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-3659 |
vulnerable | 2026-06-03 15:01:05.273570 |
Improper authentication handling for Digi PortServer TS; Digi One SP, SP IA, IA; Digi One IAP
Improper authentication handling was identified in a set of HTTP POST requests affecting the following product families:
* Digi PortServer TS - prior to and including 82000747_AA, build date 06/17/2022
* Digi One SP/Digi One SP IA/Digi One IA - prior to and including 82000774_Z, build date 10/19/2020
* Digi One IAP – prior to and including 82000770 Z, build date 10/19/2020
A specially crafted POST request to the device’s web interface may allow an unauthenticated attacker to modify configuration settings.
Published: 2025-05-12T20:40:03.567Z
Updated: 2025-05-12T22:06:36.712Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.