Janitza UMG 508, 509, 511, 604, and 605 devices improperly generate session tokens, which makes it easier for remote attackers to determine a PIN value via unspecified computations on session-token values.
References
Link | Resource |
---|---|
https://ics-cert.us-cert.gov/advisories/ICSA-15-265-03 | Patch Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
|
Information
Published : 2015-10-28 03:59
Updated : 2015-10-28 13:58
NVD link : CVE-2015-3973
Mitre link : CVE-2015-3973
JSON object : View
CWE
CWE-254
7PK - Security Features
Products Affected
janitza
- umg_511
- umg_509
- umg_605
- umg_604
- umg_508