A vulnerability was identified in the password generation algorithm when accessing the debug-interface. An unauthenticated local attacker with knowledge of the password generation timeframe might be able to brute force the password in a timely manner and thus gain root access to the device if the debug interface is still enabled.

A vulnerability was identified in the password generation algorithm when accessing the debug-interface. An unauthenticated local attacker with knowledge of the password generation timeframe might be able to brute force the password in a timely manner and thus gain root access to the device if the debug interface is still enabled.

Уязвимость debug-интерфейса микропрограммного обеспечения логических контроллеров JUMO variTRON 300, JUMO variTRON 500 и JUMO variTRON 500 touch, позволяющая нарушителю получить несанкционированный доступ к устройству