3032 matches found
CVE-2024-27164
Toshiba printers contain hardcoded credentials. As for the affected products/models/versions, see the reference URL...
CVE-2024-27164 Hardcoded credentials
Toshiba printers contain hardcoded credentials. As for the affected products/models/versions, see the reference URL...
CVE-2024-27164 Hardcoded credentials
Toshiba printers contain hardcoded credentials. As for the affected products/models/versions, see the reference URL...
CVE-2024-27164
CVE-2024-27164 affects Toshiba printers (including MFP/e-STUDIO) with hardcoded credentials. The NVD entry notes a CVSSv3.1 base score of 7.1 (LOCAL, HIGH). Connected sources indicate multiple Toshiba printer advisories and vulnerability lists, but do not provide vendor-specific exploit details i...
CVE-2024-34539
Hardcoded credentials in TerraMaster TOS firmware through 5.1 allow a remote attacker to successfully login to the mail or webmail server. These credentials can also be used to login to the administration panel and to perform privileged actions...
PT-2024-21697 · Toshiba · Toshiba Printers
Name of the Vulnerable Software and Affected Versions: Toshiba printers affected versions not specified Description: The issue concerns hardcoded credentials in Toshiba printers. There is no information provided about the estimated number of potentially affected devices worldwide or details about...
CVE-2024-34539
CVE-2024-34539 describes hardcoded credentials in TerraMaster TOS firmware up to v5.1, enabling remote login to the mail/webmail server and to the administration panel, with privilege actions possible. Remediation noted in connected sources: upgrade to firmware that removes hardcoded credentials ...
PT-2024-25958 · Terramaster · Terramaster Tos
Name of the Vulnerable Software and Affected Versions: TerraMaster TOS firmware versions through 5.1 Description: The issue concerns hardcoded credentials in the firmware, allowing a remote attacker to login to the mail or webmail server. These credentials can also be used to access the...
The vulnerability of the software recovery and backup console of Veeam Recovery Orchestrator allows a perpetrator to escalate their privileges.
The vulnerability of the software recovery and backup console of Veeam Recovery Orchestrator lies in the use of rigidly encoded credentials. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain increased privileges...
Schneider Electric EcoStruxure IT Gateway Trust Management Issue Vulnerability
Schneider Electric EcoStruxure IT Gateway is a suite of cloud-based Data Center Management-as-a-Service DMaaS products from Schneider Electric, France. A trust management issue vulnerability exists in Schneider Electric EcoStruxure IT Gateway version 1.20.x and prior versions, which stems from th...
CVE-2024-2420
LenelS2 NetBox access control and event monitoring system was discovered to contain Hardcoded Credentials in versions prior to and including 5.6.1 which allows an attacker to bypass authentication requirements...
CVE-2024-2420
LenelS2 NetBox access control and event monitoring system was discovered to contain Hardcoded Credentials in versions prior to and including 5.6.1 which allows an attacker to bypass authentication requirements...
CVE-2024-2420 LenelS2 NetBox Hardcoded Credentials
LenelS2 NetBox access control and event monitoring system was discovered to contain Hardcoded Credentials in versions prior to and including 5.6.1 which allows an attacker to bypass authentication requirements...
CVE-2024-2420 LenelS2 NetBox Hardcoded Credentials
LenelS2 NetBox access control and event monitoring system was discovered to contain Hardcoded Credentials in versions prior to and including 5.6.1 which allows an attacker to bypass authentication requirements...
CVE-2024-2420
Summary: CVE-2024-2420 affects LenelS2 NetBox access control and event monitoring system. A hard-coded credential vulnerability in versions prior to and including 5.6.1 allows an attacker to bypass authentication. Affected product/versions are LenelS2 NetBox
CVE-2024-36049
Aptos Wisal payroll accounting before 7.1.6 uses hardcoded credentials in the Windows client to fetch the complete list of usernames and passwords from the database server, using an unencrypted connection. This allows attackers in a machine-in-the-middle position read and write access to personal...
CVE-2024-36049
Aptos Wisal payroll accounting before 7.1.6 uses hardcoded credentials in the Windows client to fetch the complete list of usernames and passwords from the database server, using an unencrypted connection. This allows attackers in a machine-in-the-middle position read and write access to personal...
CVE-2024-36049
Aptos Wisal Payroll Accounting prior to version 7.1.6 is affected by a vulnerability where the Windows client uses hardcoded credentials to fetch the full list of usernames and passwords from the database over an unencrypted connection. This enables a machine-in-the-middle attacker to read and wr...
PT-2024-26862 · Aptos +1 · Aptos Wisal Payroll Accounting +1
Name of the Vulnerable Software and Affected Versions: Aptos Wisal payroll accounting versions prior to 7.1.6 Description: The issue allows attackers in a machine-in-the-middle position to gain read and write access to personally identifiable information PII and payroll data. It also enables them...
WordPress Visual Website Collaboration, Feedback & Project Management – Atarim plugin <= 3.22.6 - Hardcoded Credentials vulnerability
Hardcoded Credentials vulnerability discovered by Lucio Sá in WordPress Plugin Atarim versions = 3.22.6...