Skip to main content

Digi PortServer TS CVE-2026-12948

| EUVDEUVD-2026-42048 MEDIUM
Cross-site Scripting (XSS) (CWE-79)
2026-07-07 Digi GHSA-vr57-6xgh-64rf
4.8
CVSS 4.0 · Vendor: Digi
Share

Severity by source

Vendor (Digi) PRIMARY
4.8 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vuln.today AI
4.8 MEDIUM

Administrator credentials required (PR:H), victim must load page (UI:R), XSS crosses into victim browser scope (S:C); no availability impact applies.

3.1 AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
4.0 AV:N/AC:L/AT:N/PR:H/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N

Primary rating from Vendor (Digi).

CVSS VectorVendor: Digi

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
P
Scope
X

Lifecycle Timeline

1
Analysis Generated
Jul 07, 2026 - 15:26 vuln.today

DescriptionCVE.org

A stored cross-site scripting (XSS) vulnerability in the web management interface of the Digi PortServer TS, Digi One SP, Digi One SP IA, and Digi One IA allows a remote, authenticated administrator to inject script into certain system configuration fields. The script subsequently executes in the browser of a user who views the affected pages (CWE-79).

AnalysisAI

Stored cross-site scripting in the web management interfaces of Digi PortServer TS, Digi One SP, Digi One SP IA, and Digi One IA serial device servers allows a remote, authenticated administrator to persist malicious script payloads in system configuration fields. The injected script executes in the browser of any user who subsequently views the affected configuration pages, enabling session hijacking, credential theft, or UI redress attacks against those users. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Obtain admin credentials via phishing or reuse
Delivery
Authenticate to web management interface
Exploit
Inject script into configuration field
Execution
Victim admin loads poisoned config page
Persist
Script executes in victim browser
Impact
Exfiltrate session token to attacker

Vulnerability AssessmentAI

Exploitation Exploitation requires the attacker to authenticate to the web management interface with administrator-level privileges (PR:H per CVSS 4.0 vector) - this is not exploitable by unauthenticated or low-privilege users. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 4.0 base score of 4.8 (Medium) accurately captures the constrained real-world risk profile. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who has obtained administrator credentials to a Digi PortServer TS - whether through credential stuffing, phishing, or reuse from a prior breach - logs into the web management interface and injects a JavaScript payload into a system configuration field such as a device name or description. When a network operations engineer later browses to the affected configuration page to review settings, the stored script fires in their browser, exfiltrating their session cookie to an attacker-controlled endpoint and granting the attacker a secondary session. …
Remediation The primary remediation is to apply any firmware update issued by Digi International for the affected device lines; consult https://www.digi.com/resources/security for the latest advisories, as no specific patched firmware version number was available in the source data at time of analysis. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-12948 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy