Vulnerabilities > CVE-2015-3973 - 7PK - Security Features vulnerability in Janitza products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Janitza UMG 508, 509, 511, 604, and 605 devices improperly generate session tokens, which makes it easier for remote attackers to determine a PIN value via unspecified computations on session-token values.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Hardware | 5 |