CVE-2015-3960 - OpenCVE

The firmware in MNS before 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches uses hardcoded RSA private keys and certificates across different customers' installations, which makes it easier for remote attackers to defeat cryptographic protection mechanisms for HTTPS sessions by leveraging knowledge of a private key from another installation.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:M/Au:N/C:P/I:N/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Garrettcom	Magnum 10k Firmware Magnum 6k Firmware

Configuration 1 [-]

OR	cpe:2.3:o:garrettcom:magnum_10k_firmware::::::::
	cpe:2.3:o:garrettcom:magnum_6k_firmware::::::::

No data.

References

Link	Providers
http://www.garrettcom.com/techsupport/MNS6K_R456_Release_Notes.pdf
http://www.securityfocus.com/bid/75236
https://ics-cert.us-cert.gov/advisories/ICSA-15-167-01

History

No history.

MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2015-08-04T01:00:00

Updated: 2024-08-06T06:04:01.020Z

Reserved: 2015-05-12T00:00:00

Link: CVE-2015-3960

Vulnrichment

No data.

NVD

Status : Modified

Published: 2015-08-04T01:59:05.513

Modified: 2016-12-06T03:01:36.027

Link: CVE-2015-3960

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-06-16T00:00:00", "descriptions": [{"lang": "en", "value": "The firmware in MNS before 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches uses hardcoded RSA private keys and certificates across different customers' installations, which makes it easier for remote attackers to defeat cryptographic protection mechanisms for HTTPS sessions by leveraging knowledge of a private key from another installation."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-12-02T20:57:01", "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "shortName": "icscert"}, "references": [{"name": "75236", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/75236"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.garrettcom.com/techsupport/MNS6K_R456_Release_Notes.pdf"}, {"tags": ["x_refsource_MISC"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-167-01"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "ics-cert@hq.dhs.gov", "ID": "CVE-2015-3960", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The firmware in MNS before 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches uses hardcoded RSA private keys and certificates across different customers' installations, which makes it easier for remote attackers to defeat cryptographic protection mechanisms for HTTPS sessions by leveraging knowledge of a private key from another installation."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "75236", "refsource": "BID", "url": "http://www.securityfocus.com/bid/75236"}, {"name": "http://www.garrettcom.com/techsupport/MNS6K_R456_Release_Notes.pdf", "refsource": "CONFIRM", "url": "http://www.garrettcom.com/techsupport/MNS6K_R456_Release_Notes.pdf"}, {"name": "https://ics-cert.us-cert.gov/advisories/ICSA-15-167-01", "refsource": "MISC", "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-167-01"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T06:04:01.020Z"}, "title": "CVE Program Container", "references": [{"name": "75236", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/75236"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.garrettcom.com/techsupport/MNS6K_R456_Release_Notes.pdf"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-167-01"}]}]}, "cveMetadata": {"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "assignerShortName": "icscert", "cveId": "CVE-2015-3960", "datePublished": "2015-08-04T01:00:00", "dateReserved": "2015-05-12T00:00:00", "dateUpdated": "2024-08-06T06:04:01.020Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:garrettcom:magnum_10k_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "BDC2AFA7-8A05-4CD0-9690-E89C2E238762", "versionEndIncluding": "4.5.5", "vulnerable": true}, {"criteria": "cpe:2.3:o:garrettcom:magnum_6k_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "2523FB45-C5F4-4090-B01F-E75D795981FC", "versionEndIncluding": "4.5.5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The firmware in MNS before 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches uses hardcoded RSA private keys and certificates across different customers' installations, which makes it easier for remote attackers to defeat cryptographic protection mechanisms for HTTPS sessions by leveraging knowledge of a private key from another installation."}, {"lang": "es", "value": "Vulnerabilidad en el firmware de MNS en versiones anteriores a 4.5.6 en los switches Belden GarrettCom Magnum 6K y Magnum 10K, utiliza claves privadas y certificados RSA embebidos a trav\u00e9s de las diferentes instalaciones de los clientes, lo que hace que sea m\u00e1s f\u00e1cil para atacantes remotos romper los mecanismos de protecci\u00f3n de cifrado de las sesiones HTTPS aprovechando el conocimiento de una clave privada de otra instalaci\u00f3n."}], "id": "CVE-2015-3960", "lastModified": "2016-12-06T03:01:36.027", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-08-04T01:59:05.513", "references": [{"source": "ics-cert@hq.dhs.gov", "tags": ["Vendor Advisory"], "url": "http://www.garrettcom.com/techsupport/MNS6K_R456_Release_Notes.pdf"}, {"source": "ics-cert@hq.dhs.gov", "url": "http://www.securityfocus.com/bid/75236"}, {"source": "ics-cert@hq.dhs.gov", "tags": ["Third Party Advisory", "US Government Resource"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-167-01"}], "sourceIdentifier": "ics-cert@hq.dhs.gov", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-310"}], "source": "nvd@nist.gov", "type": "Primary"}]}