Unrated severityNVD Advisory· Published Aug 4, 2015· Updated Jun 17, 2026
CVE-2015-3959
CVE-2015-3959
Description
The firmware in MNS before 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches has a hardcoded serial-console password for a privileged account, which might allow physically proximate attackers to obtain access by establishing a console session to a nonstandard installation on which this account is enabled, and leveraging knowledge of this password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:o:garrettcom:magnum_10k_firmware:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:garrettcom:magnum_10k_firmware:*:*:*:*:*:*:*:*range: <=4.5.5
- cpe:2.3:o:garrettcom:magnum_6k_firmware:*:*:*:*:*:*:*:*range: <=4.5.5
- Range: <4.5.6
- Range: <4.5.6
Patches
Vulnerability mechanics
References
3- www.garrettcom.com/techsupport/MNS6K_R456_Release_Notes.pdfnvdVendor Advisory
- ics-cert.us-cert.gov/advisories/ICSA-15-167-01nvdThird Party AdvisoryUS Government Resource
- www.securityfocus.com/bid/75235nvd
News mentions
0No linked articles in our index yet.