Every CVE whose affected-product data names Janitza Umg 508, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2015-3972 — CVSS 10.0 (critical): The web interface on Janitza UMG 508, 509, 511, 604, and 605 devices supports only short PIN values for authentication, which makes it…
CVE-2015-3968 — CVSS 7.5 (high): The FTP service on Janitza UMG 508, 509, 511, 604, and 605 devices has a default password, which makes it easier for remote attackers to…
CVE-2015-3971 — CVSS 7.5 (high): The debug interface on Janitza UMG 508, 509, 511, 604, and 605 devices does not require authentication, which allows remote attackers to…
CVE-2015-3967 — CVSS 6.8 (medium): Cross-site request forgery (CSRF) vulnerability on Janitza UMG 508, 509, 511, 604, and 605 devices allows remote attackers to hijack the…
CVE-2015-3973 — CVSS 5.0 (medium): Janitza UMG 508, 509, 511, 604, and 605 devices improperly generate session tokens, which makes it easier for remote attackers to determine…
CVE-2015-3969 — CVSS 5.0 (medium): Janitza UMG 508, 509, 511, 604, and 605 devices allow remote attackers to obtain sensitive network-connection information via a request to…
CVE-2015-3970 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in the web interface on Janitza UMG 508, 509, 511, 604, and 605 devices allow remote…