The web interface on Janitza UMG 508, 509, 511, 604, and 605 devices supports only short PIN values for authentication, which makes it easier for remote attackers to obtain access via a brute-force attack.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://ics-cert.us-cert.gov/advisories/ICSA-15-265-03 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2015-10-28T10:00:00
Updated: 2024-08-06T06:04:02.932Z
Reserved: 2015-05-12T00:00:00
Link: CVE-2015-3972
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2015-10-28T10:59:06.557
Modified: 2015-10-28T20:59:05.257
Link: CVE-2015-3972
Redhat
No data.