CVE-2015-3961
- EPSS 0.58%
- Veröffentlicht 04.08.2015 01:59:06
- Zuletzt bearbeitet 12.04.2025 10:46:40
The web-server component in MNS before 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches allows remote authenticated users to cause a denial of service (memory corruption and reboot) via a crafted URL.
CVE-2015-3960
- EPSS 0.44%
- Veröffentlicht 04.08.2015 01:59:05
- Zuletzt bearbeitet 12.04.2025 10:46:40
The firmware in MNS before 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches uses hardcoded RSA private keys and certificates across different customers' installations, which makes it easier for remote attackers to defeat cryptographic pro...
CVE-2015-3959
- EPSS 0.07%
- Veröffentlicht 04.08.2015 01:59:04
- Zuletzt bearbeitet 12.04.2025 10:46:40
The firmware in MNS before 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches has a hardcoded serial-console password for a privileged account, which might allow physically proximate attackers to obtain access by establishing a console sess...
CVE-2015-3942
- EPSS 0.8%
- Veröffentlicht 04.08.2015 01:59:03
- Zuletzt bearbeitet 12.04.2025 10:46:40
Multiple cross-site scripting (XSS) vulnerabilities in the web-server component in MNS before 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.