FTP Service Vulnerability in Janitza UMG Devices
CVE-2015-3968

Currently unrated

Key Information:

Vendor: Janitza
Status: Umg 511; Umg 509; Umg 508; Umg 604
Vendor: CVE Published:; 28 October 2015

What is CVE-2015-3968?

The FTP service on Janitza UMG 508, 509, 511, 604, and 605 devices is compromised due to the use of default passwords. This means that remote attackers can easily gain unauthorized access, allowing them to read or manipulate sensitive files over TCP port 21. Organizations using these devices should take immediate action to secure their FTP services by changing default credentials and implementing additional security measures.

References

https://ics-cert.us-cert.gov/advisories/ICSA-15-265-03

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 28, 2015
Vulnerability Reserved
May 12, 2015

CVE-2015-3968 Data

JSON