RLE Nova-Wind Turbine HMI insecure credential Vulnerability (CVE-2015-3951)
RLE Nova-Wind Turbine HMI insecure credential Vulnerability (CVE-2015-3951)
Release date:
Updated on:
Affected Systems:
RLE International GmbH Nova-Wind Turbine HMI
Description:
CVE (CAN) ID: CVE-2015-3951
The Nova-Wind Turbine HMI is a human-machine interface for Wind turbines.
The Nova-Wind Turbine HMI provides a pure file storage credential, which allows malicious users to access devices, obtain sensitive information, and change configurations.
<* Source: Maxim Rupp
Link: https://ics-cert.us-cert.gov/advisories/ICSA-15-162-01
*>
Suggestion:
Vendor patch:
RLE International GmbH
----------------------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.rle.international/de/
This article permanently updates the link address: