PT-2012-4438 · Garrettcom · Garrettcom Magnum Mns-6K

Published

2012-09-04

Updated

2012-09-04

CVE-2012-3014

CVSS v2.0

7.7

High

Vector

AV:A/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions GarrettCom Magnum MNS-6K versions prior to 4.4.0 GarrettCom Magnum MNS-6K versions 14.x prior to 14.4.0

Description The issue concerns a hardcoded password for an administrative account in the Management Software application. This hardcoded password allows local users to gain privileges, potentially leading to unauthorized access and control.

Recommendations For versions prior to 4.4.0, update to version 4.4.0 or later. For versions 14.x prior to 14.4.0, update to version 14.4.0 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-255

Related Identifiers

CVE-2012-3014

Affected Products

Garrettcom Magnum Mns-6K

PT-2012-4438 · Garrettcom · Garrettcom Magnum Mns-6K

CVE-2012-3014

Weakness Enumeration

Related Identifiers

Affected Products

References · 3