Janitza UMG 96RM-E 24V和Janitza UMG 96RM-E 230V 操作系统命令注入漏洞

Both Janitza UMG 96RM-E 24V and Janitza UMG 96RM-E 230V are multi-functional power quality analyzers produced by the German company Janitza. Both models have vulnerabilities related to operating system command injection. These vulnerabilities arise from defects in the power analyzer’s processing ...

Janitza UMG 96-PA和Janitza UMG 96-PA-MID+ 安全漏洞

The Janitza UMG 96-PA and Janitza UMG 96-PA-MID+ are both energy management and detection devices from Janitza, Germany. A security vulnerability exists in the Janitza UMG 96-PA and Janitza UMG 96-PA-MID+ that originates from an attacker being able to send a specially crafted Modbus read command,...

EUVD-2015-4004

Malware in sbrugna...

EUVD-2015-3998

Malware in sbrugna...

EUVD-2015-3999

Malware in sbrugna...

EUVD-2015-4001

Malware in sbrugna...

EUVD-2015-4002

Malware in sbrugna...

EUVD-2015-4003

Malware in sbrugna...

Janitza UMG Power Quality Measuring Cross-Site Request Forgery (CVE-2015-3967)

Cross-site request forgery CSRF vulnerability on Janitza UMG 508, 509, 511, 604, and 605 devices allows remote attackers to hijack the authentication of arbitrary users. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...

Janitza UMG Power Quality Measuring Credentials Management Errors (CVE-2015-3968)

The FTP service on Janitza UMG 508, 509, 511, 604, and 605 devices has a default password, which makes it easier for remote attackers to read or write to files via a session on TCP port 21. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

Janitza UMG Power Quality Measuring Exposure of Sensitive Information to an Unauthorized Actor (CVE-2015-3969)

Janitza UMG 508, 509, 511, 604, and 605 devices allow remote attackers to obtain sensitive network-connection information via a request to UDP port 1 1234 or 2 1235. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVE...

Janitza UMG Power Quality Measuring Improper Session Token Generation (CVE-2015-3973)

Janitza UMG 508, 509, 511, 604, and 605 devices improperly generate session tokens, which makes it easier for remote attackers to determine a PIN value via unspecified computations on session-token values. This plugin only works with Tenable.ot. Please visit...

The vulnerability of the microprogramming software in Janitza UMG 508, 509, 511, 604, 605 power supply monitoring systems allows a perpetrator to read and write files or execute JASIC code.

The vulnerability of the debugging interface of Microprogramming Software for Control System Chains of Janitza UMG models 508, 509, 511, 604, and 605 is related to the absence of an authentication procedure. Exploiting this vulnerability allows a malicious actor to read and write files, or execut...

The vulnerability of the microprogramming software in Janitza UMG 508, 509, 511, 604, 605 power supply monitoring systems allows a intruder to gain access to the device.

The vulnerability of the web interface of the Microprogramming Software for Control Systems of Power Supply Devices Janitza UMG 508, 509, 511, 604, 605 arises from the fact that these devices only support short PIN codes for authentication. Exploiting this vulnerability could allow an attacker,...

The vulnerability of the microprogramming software in Janitza UMG 508, 509, 511, 604, 605 power supply monitoring systems allows a intruder to read or write files.

The vulnerability of the FTP service provided by the microprogramming software for Janitza UMG 508, 509, 511, 604, and 605 control systems is related to the use of a default password. Exploiting this vulnerability allows an attacker to remotely read or write files by establishing a TCP session on...

Janitza UMG Session Token Flaw Vulnerability

The Janitza UMG is an online power quality monitor for the energy industry from Janitza Germany. Janitza UMG 508, 509, 511, 604,605 has a session-token flaw. Allows a remote attacker to perform calculations on the session-token value and determine the PIN value...

Janitza UMG Brute Force Attack Vulnerability

The Janitza UMG is an online power quality monitor for the energy industry from Janitza Germany. A brute force attack vulnerability exists in Janitza UMG 508, 509, 511, 604,605. This allows remote attackers to gain access by performing a brute force attack...

Janitza UMG Arbitrary File Read/Write Vulnerability

The Janitza UMG is an online power quality monitor for the energy industry from Janitza Germany. An arbitrary file read/write vulnerability exists in Janitza UMG 508, 509, 511, 604,605. This allows remote attackers to read or write files, or execute arbitrary JASIC code via a session with TCP por...

Janitza UMG Information Disclosure Vulnerability

The Janitza UMG is an online power quality monitor for the energy industry from Janitza Germany. An information disclosure vulnerability exists in Janitza UMG 508, 509, 511, 604, 605. It allows remote attackers to obtain sensitive network connection information by requesting to UDP port 1234 or...

Janitza UMG Arbitrary File Read/Write Vulnerability (CNVD-2015-07286)

The Janitza UMG is an online power quality monitor for the energy industry from Janitza Germany. An arbitrary file read/write vulnerability exists in Janitza UMG 508, 509, 511, 604, 605. This allows remote attackers to read or write files via a TCP session on port 21...