CVE-2015-3971

Name of the Vulnerable Software and Affected Versions Janitza UMG versions 508, 509, 511, 604, 605

Description The issue concerns the debug interface of the affected devices, which lacks authentication. This allows remote attackers to establish a session on TCP port 1239 and perform unauthorized actions, including reading or writing files and executing arbitrary JASIC code.

Recommendations For Janitza UMG versions 508, 509, 511, 604, 605, consider disabling the debug interface or restricting access to TCP port 1239 to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.