Описание
A vulnerability was identified in the password generation algorithm when accessing the debug-interface. An unauthenticated local attacker with knowledge of the password generation timeframe might be able to brute force the password in a timely manner and thus gain root access to the device if the debug interface is still enabled.
EPSS
7.4 High
CVSS3
Дефекты
Связанные уязвимости
A vulnerability was identified in the password generation algorithm when accessing the debug-interface. An unauthenticated local attacker with knowledge of the password generation timeframe might be able to brute force the password in a timely manner and thus gain root access to the device if the debug interface is still enabled.
Уязвимость debug-интерфейса микропрограммного обеспечения логических контроллеров JUMO variTRON 300, JUMO variTRON 500 и JUMO variTRON 500 touch, позволяющая нарушителю получить несанкционированный доступ к устройству
EPSS
7.4 High
CVSS3