CVE-2016-9335: CVE-2016-9335

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2016-9335

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

A hard-coded cryptographic key vulnerability was identified in Red Lion Controls Sixnet-Managed Industrial Switches running firmware Version 5.0.196 and Stride-Managed Ethernet Switches running firmware Version 5.0.190. Vulnerable versions of Stride-Managed Ethernet switches and Sixnet-Managed Industrial switches use hard-coded HTTP SSL/SSH keys for secure communication. Because these keys cannot be regenerated by users, all products use the same key. The attacker could disrupt communication or compromise the system. CVSS v3 base score: 10, CVSS vector string: (AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H). Red Lion Controls recommends updating to SLX firmware Version 5.3.174.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

使用硬编码的密码学密钥

Source: NVD (National Vulnerability Database)

Vulnerability Title

Red Lion Controls Sixnet-Managed Industrial Switches和AutomationDirect Stride-Managed Ethernet Switches 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Red Lion Controls Sixnet-Managed Industrial Switches和AutomationDirect Stride-Managed Ethernet Switches都是以太网交换机。Red Lion Controls Sixnet-Managed Industrial Switches是美国Red Lion Controls公司的工业以太网管理交换机。AutomationDirect Stride-Managed Ethernet Switches是美国Automa

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Red Lion Controls	Sixnet-Managed Industrial Switches	firmware Version 5.0.196 and prior	-
AutomationDirect	STRIDE-Managed Ethernet Switch models	firmware Version 5.0.190 and prior.	-

II. Public POCs for CVE-2016-9335

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2016-9335

Please Login to view more intelligence information

New Vulnerabilities

Vendor: Red Lion Controls

Same weakness: CWE-321

V. Comments for CVE-2016-9335

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2016-9335

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2016-9335

III. Intelligence Information for CVE-2016-9335

New Vulnerabilities

V. Comments for CVE-2016-9335

Leave a comment