๐Ÿ” CVE Alert

CVE-2026-12352

MEDIUM 5.9

Incorrect Authorization

CVSS Score
5.9
EPSS Score
0.3%
EPSS Percentile
17th

This vulnerability allows an unauthenticated actor to bypass authentication and gain access to restricted resources on the device.

CWE CWE-863
Vendor digi international
Product portserver ts 1/2/4
Published Jul 7, 2026
Last Updated Jul 13, 2026
Stay Ahead of the Next One

Get instant alerts for digi international portserver ts 1/2/4

Be the first to know when new medium vulnerabilities affecting digi international portserver ts 1/2/4 are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Affected Versions

Digi International / PortServer TS 1/2/4
82000747_V1 โ‰ค 82000747_AB
Digi International / Digi One SP / SP IA / IA
82000774_Z โ‰ค 82000774_AB

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
digi.com: https://www.digi.com/resources/security