Lucene search
HistoryOct 28, 2015 - 10:59 a.m.
CVE-2015-3968
janitza umg
cve-2015-3968
ftp service
default password
remote attackers
tcp port 21
vulnerability
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.8 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
75.2%
The FTP service on Janitza UMG 508, 509, 511, 604, and 605 devices has a default password, which makes it easier for remote attackers to read or write to files via a session on TCP port 21.
Affected configurations
Node
janitzaumg_508Match-
ORjanitzaumg_509Match-
ORjanitzaumg_511Match-
ORjanitzaumg_604Match-
ORjanitzaumg_605Match-
Related
cvelist
cvelist
CVE-2015-3968
2015-10-28 10:00:00
prion
prion
Default credentials
2015-10-28 10:59:00
nessus
nessus
Janitza UMG Power Quality Measuring Credentials Management Errors (CVE-2015-3968)
2024-02-12 00:00:00
Janitza Hard-Coded FTP Password
2015-11-17 00:00:00
nvd
nvd
CVE-2015-3968
2015-10-28 10:59:01
openvas
openvas
Janitza Multiple Devices Default Credentials (FTP)
2016-06-11 00:00:00
ics
ics
Janitza UMG Power Quality Measuring Products Vulnerabilities
2018-08-27 12:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.8 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
75.2%
Related for CVE-2015-3968