Lucene search
HistorySep 04, 2012 - 11:04 a.m.
CVE-2012-3014
7.7 High
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:S/C:C/I:C/A:C
6.8 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
0.4%
The Management Software application in GarrettCom Magnum MNS-6K before 4.4.0, and 14.x before 14.4.0, has a hardcoded password for an administrative account, which allows local users to gain privileges via unspecified vectors.
Affected configurations
Node
garrettcommagnum_managed_networks_software-6kRange≤4.3.1
ORgarrettcommagnum_managed_networks_software-6kMatch4.2
ORgarrettcommagnum_managed_networks_software-6kMatch4.2.1
ORgarrettcommagnum_managed_networks_software-6kMatch4.3.0
ORgarrettcommagnum_managed_networks_software-6k_secureMatch14.2
ORgarrettcommagnum_managed_networks_software-6k_secureMatch14.2.1
ORgarrettcommagnum_managed_networks_software-6k_secureMatch14.3.0
ORgarrettcommagnum_managed_networks_software-6k_secureMatch14.3.1
Related
cve
cve
CVE-2012-3014
2022-10-03 16:15:23
prion
prion
Hardcoded credentials
2012-09-04 11:04:00
cvelist
cvelist
CVE-2012-3014
2022-10-03 16:15:23
ics
ics
GarrettCom - Use of Hard-Coded Password
2013-04-30 12:00:00
7.7 High
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:S/C:C/I:C/A:C
6.8 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
0.4%
Related for NVD:CVE-2012-3014