Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The firmware in MNS before 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches uses hardcoded RSA private keys and certificates across different customers' installations, which makes it easier for remote attackers to defeat cryptographic protection mechanisms for HTTPS sessions by leveraging knowledge of a private key from another installation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Belden GarrettCom Magnum 6K和10K Switches MNS 信息泄露漏洞
Vulnerability Description
MNS on Belden GarrettCom Magnum 6K和Magnum 10K是美国Belden公司的一套用于管理Magnum 6K和Magnum 10K系列网管型以太网交换机的软件。 Belden GarrettCom Magnum 6K和Magnum 10K交换机上的MNS 4.5.6之前版本的固件中存在安全漏洞,该漏洞源于程序在不同的用户安装过程中使用硬编码的RSA私钥和证书。远程攻击者可借助已知的私钥利用该漏洞破坏HTTPS会话的加密保护机制。
CVSS Information
N/A
Vulnerability Type
N/A