1 results (0.002 seconds)
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2016-9335
https://notcve.org/view.php?id=CVE-2016-9335
09 May 2018 — A hard-coded cryptographic key vulnerability was identified in Red Lion Controls Sixnet-Managed Industrial Switches running firmware Version 5.0.196 and Stride-Managed Ethernet Switches running firmware Version 5.0.190. Vulnerable versions of Stride-Managed Ethernet switches and Sixnet-Managed Industrial switches use hard-coded HTTP SSL/SSH keys for secure communication. Because these keys cannot be regenerated by users, all products use the same key. The attacker could disrupt communication or compromise t... • https://ics-cert.us-cert.gov/advisories/ICSA-17-054-02 • CWE-321: Use of Hard-coded Cryptographic Key CWE-798: Use of Hard-coded Credentials •