CVE-2016-4521

Published: May 31, 2016Modified: May 6, 2026

9.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Sixnet BT-5xxx and BT-6xxx M2M devices before 3.8.21 and 3.9.x before 3.9.8 have hardcoded credentials, which allows remote attackers to obtain access via unspecified vectors.

Affected (4)

Products: Sixnet: Bt 5 Series Cellular Router Firmware, Bt 6 Series Cellular Router Firmware

2 products

Bt 5 Series Cellular Router Firmware

Bt 6 Series Cellular Router Firmware

Configuration A

4 vulnerable · 2 platform

Vulnerable Software	Affected Versions
Sixnet Bt 5 Series Cellular Router Firmware	Up to 3.8.20
Sixnet Bt 5 Series Cellular Router Firmware	Up to 3.9.7
Sixnet Bt 6 Series Cellular Router Firmware	Up to 3.8.20
Sixnet Bt 6 Series Cellular Router Firmware	Up to 3.9.7

Running on/with	Platform Versions
Sixnet Bt 5 Series Cellular Router	All versions
Sixnet Bt 6 Series Cellular Router	All versions

Related CWEs

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (2)

https://ics-cert.us-cert.gov/advisories/ICSA-16-147-02

Source: ics-cert@hq.dhs.gov

Third Party AdvisoryUS Government Resource

https://ics-cert.us-cert.gov/advisories/ICSA-16-147-02

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

Timeline

No history available yet.