Remote Information Exposure in Janitza UMG Devices by Janitza
CVE-2015-3969

Currently unrated

Key Information:

Vendor: Janitza
Status: Umg 511; Umg 509; Umg 508; Umg 604
Vendor: CVE Published:; 28 October 2015

What is CVE-2015-3969?

Certain Janitza UMG devices, including models 508, 509, 511, 604, and 605, are vulnerable to remote information exposure. This vulnerability allows attackers to obtain sensitive network connection details by sending requests to UDP ports 1234 and 1235. Exploitation of this flaw could lead to unauthorized access to network configurations, potentially assisting in further attacks on the network infrastructure.

References

https://ics-cert.us-cert.gov/advisories/ICSA-15-265-03

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 28, 2015
Vulnerability Reserved
May 12, 2015

CVE-2015-3969 Data

JSON