PT-2016-5999 · Red Lion · Sixnet Bt-6Xxx+1

Neil Smith

·

Published

2016-05-31

·

Updated

2016-06-01

·

CVE-2016-4521

CVSS v3.1

10

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Sixnet BT-5xxx versions prior to 3.8.21 Sixnet BT-6xxx versions prior to 3.8.21 Sixnet BT-5xxx and BT-6xxx version 3.9.x prior to 3.9.8

Description The issue allows remote attackers to obtain access due to hardcoded credentials in the devices.

Recommendations For Sixnet BT-5xxx and BT-6xxx versions prior to 3.8.21, update to version 3.8.21 or later. For Sixnet BT-5xxx and BT-6xxx version 3.9.x prior to 3.9.8, update to version 3.9.8 or later.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

Related Identifiers

CVE-2016-4521

Affected Products

Sixnet Bt-5Xxx

Sixnet Bt-6Xxx