CVE-2015-3973 Information

Description

Janitza UMG 508 509 511 604 and 605 devices improperly generate session tokens which makes it easier for remote attackers to determine a PIN value via unspecified computations on session-token values.

Reference

https://ics-cert.us-cert.gov/advisories/ICSA-15-265-03