← Back

CVE-2015-6412

nvd nist
Published: Jan 22, 2016Modified: May 6, 2026

JSON object

Loading...
9.8
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

Cisco Modular Encoding Platform D9036 Software before 02.04.70 has hardcoded (1) root and (2) guest passwords, which makes it easier for remote attackers to obtain access via an SSH session, aka Bug ID CSCut88070.

Affected (4)

Cisco
1 product
Modular Encoding Platform D9036 Software
Configuration A
4 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Cisco
Modular Encoding Platform D9036 Software
Version 02.00.80
Modular Encoding Platform D9036 Software
Version 02.01.50
Modular Encoding Platform D9036 Software
Version 02.02.30
Modular Encoding Platform D9036 Software
Version 02.03.30
Running on/withPlatform Versions
Cisco
Modular Encoding Platform D9036
All versions

Related CWEs

CWE-255
CWE-255

References (2)

Source: psirt@cisco.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.