VYPR

Magnum 6K

by Garrettcom

CVEs (5)

  • CVE-2017-20234CriApr 3, 2026
    risk 0.64cvss 9.8epss 0.00

    GarrettCom Magnum 6K and 10K managed switches contain an authentication bypass vulnerability that allows unauthenticated attackers to gain unauthorized access by exploiting a hardcoded string in the authentication mechanism. Attackers can bypass login controls to access…

  • CVE-2015-3961Aug 4, 2015
    risk 0.00cvss epss 0.01

    The web-server component in MNS before 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches allows remote authenticated users to cause a denial of service (memory corruption and reboot) via a crafted URL.

  • CVE-2015-3959Aug 4, 2015
    risk 0.00cvss epss 0.00

    The firmware in MNS before 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches has a hardcoded serial-console password for a privileged account, which might allow physically proximate attackers to obtain access by establishing a console session to a nonstandard…

  • CVE-2015-3942Aug 4, 2015
    risk 0.00cvss epss 0.01

    Multiple cross-site scripting (XSS) vulnerabilities in the web-server component in MNS before 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2012-3014Sep 4, 2012
    risk 0.00cvss epss 0.00

    The Management Software application in GarrettCom Magnum MNS-6K before 4.4.0, and 14.x before 14.4.0, has a hardcoded password for an administrative account, which allows local users to gain privileges via unspecified vectors.