CVE-2015-3972 Information

Description

The web interface on Janitza UMG 508 509 511 604 and 605 devices supports only short PIN values for authentication which makes it easier for remote attackers to obtain access via a brute-force attack.

Reference

https://ics-cert.us-cert.gov/advisories/ICSA-15-265-03