1186 matches found
CVE-2025-59407
The Flock Safety DetectionProcessing com.flocksafety.android.objects application 6.35.33 for Android installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices bundles a Java Keystore flockrye.bks along with its hardcoded password flockhibiki17 in its code. The keysto...
CVE-2025-59407
The Flock Safety DetectionProcessing com.flocksafety.android.objects application 6.35.33 for Android installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices bundles a Java Keystore flockrye.bks along with its hardcoded password flockhibiki17 in its code. The keysto...
CVE-2025-59407
The CVE-2025-59407 entry affects Flock Safety DetectionProcessing for Android (version 6.35.33) on Falcon/Sparrow LPRs and Bravo Edge devices. The code bundles a Java Keystore (flock_rye.bks) with a hardcoded password (flockhibiki17); the keystore contains a private key, enabling potential privat...
CVE-2025-59407
The Flock Safety DetectionProcessing com.flocksafety.android.objects application 6.35.33 for Android installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices bundles a Java Keystore flockrye.bks along with its hardcoded password flockhibiki17 in its code. The keysto...
PT-2025-40413
Name of the Vulnerable Software and Affected Versions Flock Safety DetectionProcessing application version 6.35.33 Description The Flock Safety DetectionProcessing application for Android version 6.35.33, used on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices, includes...
CVE-2025-59407
The Flock Safety DetectionProcessing com.flocksafety.android.objects application 6.35.33 for Android installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices bundles a Java Keystore flockrye.bks along with its hardcoded password flockhibiki17 in its code. The keysto...
CVE-2025-34196
Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 25.1.102 and Application prior to 25.1.1413 Windows client deployments contain a hardcoded private key for the PrinterLogic Certificate Authority CA and a hardcoded password in product configuration files. The Windows...
CVE-2025-34196 Vasion Print (formerly PrinterLogic) Hardcoded PrinterLogic CA Private Key and Hardcoded Password
Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 25.1.102 and Application prior to 25.1.1413 Windows client deployments contain a hardcoded private key for the PrinterLogic Certificate Authority CA and a hardcoded password in product configuration files. The Windows...
CVE-2025-34196
Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 25.1.102 and Application prior to 25.1.1413 Windows client deployments contain a hardcoded private key for the PrinterLogic Certificate Authority CA and a hardcoded password in product configuration files. The Windows...
CVE-2025-34196 Vasion Print (formerly PrinterLogic) Hardcoded PrinterLogic CA Private Key and Hardcoded Password
Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 25.1.102 and Application prior to 25.1.1413 Windows client deployments contain a hardcoded private key for the PrinterLogic Certificate Authority CA and a hardcoded password in product configuration files. The Windows...
CVE-2025-34196
Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 25.1.102 and Application prior to 25.1.1413 contain a hardcoded private key for the PrinterLogic CA and a hardcoded password in configuration files. The Windows client ships the CA certificate and private key (and other...
PT-2025-39867
Name of the Vulnerable Software and Affected Versions Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 25.1.102 Vasion Print Application versions prior to 25.1.1413 Description The Vasion Print Virtual Appliance Host and Application contain a hardcoded private key for t...
Use Of Default Credentials
github.com/neuvector/neuvector is vulnerable to Use of Default Credentials. The vulnerability is due to hardcoded default password due to the use of a fixed string as the default admin password, which can be exploited if not changed immediately after deployment, allowing attackers with network...
CVE-2025-34197
Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 22.0.951, Application prior to 20.0.2368 VA and SaaS deployments contain an undocumented local user account named ubuntu with a preset password and a sudoers entry granting that account passwordless root privileges ubuntu...
CVE-2025-34197
CVE-2025-34197 affects Vasion Print Virtual Appliance Host < 22.0.951 and Vasion Print Application
CVE-2025-34197 Vasion Print (formerly PrinterLogic) Undocumented Local Account with Hardcoded Password and Passwordless sudo
Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 22.0.951, Application prior to 20.0.2368 VA and SaaS deployments contain an undocumented local user account named ubuntu with a preset password and a sudoers entry granting that account passwordless root privileges ubuntu...
CVE-2025-34197 Vasion Print (formerly PrinterLogic) Undocumented Local Account with Hardcoded Password and Passwordless sudo
Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 22.0.951, Application prior to 20.0.2368 VA and SaaS deployments contain an undocumented local user account named ubuntu with a preset password and a sudoers entry granting that account passwordless root privileges ubuntu...
CVE-2025-55110
CVE-2025-55110 concerns BMC Control-M/Agents that use a kdb or PKCS#12 keystore by default with a well-known, documented password. The available connected sources confirm that an attacker with read access to the keystore could disclose sensitive data using this password. The vulnerability centers...
PT-2025-37370
Name of the Vulnerable Software and Affected Versions Ceragon Networks / Siklu Communication EtherHaul series versions 7.4.0 through 10.7.3 Description The rfpiped service on TCP port 555 allows unauthenticated file uploads to any writable location on the device. File upload packets use weak...
CVE-2025-10221 Hardcoded Password Exposure in AxxonNet (C-WerkNet) ARP Agent Logs
Insertion of Sensitive Information into Log File CWE-532 in the ARP Agent component in AxxonSoft Axxon One / AxxonNet / C-WerkNet 2.0.4 and earlier on Windows platforms allows a local attacker to obtain plaintext credentials via reading TRACE log files containing serialized JSON with passwords...