Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1186 matches found

Cvelist
Cvelistadded 2024/08/16 12:0 a.m.14 views

CVE-2024-42639

H3C GR1100-P v100R009 was discovered to use a hardcoded password in /etc/shadow, which allows attackers to log in as root...

0.00158EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2024/08/16 12:0 a.m.3 views

PT-2024-30089 · H3C · H3C Gr-1100-P

Name of the Vulnerable Software and Affected Versions: H3C GR1100-P version v100R009 Description: The issue is related to a hardcoded password in /etc/shadow, which allows attackers to log in as root. This enables unauthorized access to the system. Recommendations: For H3C GR1100-P version...

9.8CVSS6.7AI score0.00158EPSS
Exploits1References7
CVE
CVEadded 2024/08/16 12:0 a.m.61 views

CVE-2024-42637

The CVE-2024-42637 entry concerns H3C R3010, version v100R002L02, with a hardcoded password in /etc/shadow that can allow root login. Connected sources (Red Hat and NVD) confirm the same description and add a CVSS 3.1 base score of 9.8 (CRITICAL, NETWORK exploitability, no user interaction). The ...

9.8CVSS7.7AI score0.00158EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologiesadded 2024/08/16 12:0 a.m.2 views

PT-2024-30088 · H3C · H3C Magic B1St

Name of the Vulnerable Software and Affected Versions: H3C Magic B1ST version v100R012 Description: A hardcoded password vulnerability was discovered in /etc/shadow, allowing attackers to log in as root. This issue affects the H3C Magic B1ST device, potentially allowing unauthorized access...

9.8CVSS7.4AI score0.00158EPSS
Exploits1References7
Cvelist
Cvelistadded 2024/08/16 12:0 a.m.13 views

CVE-2024-42638

H3C Magic B1ST v100R012 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...

0.00158EPSS
Exploits1References2
Cvelist
Cvelistadded 2024/08/16 12:0 a.m.13 views

CVE-2024-42637

H3C R3010 v100R002L02 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...

0.00158EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2024/08/16 12:0 a.m.14 views

CVE-2024-42637

H3C R3010 v100R002L02 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...

7.5AI score0.00158EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2024/08/16 12:0 a.m.4 views

PT-2024-30087 · H3C · H3C R3010

Name of the Vulnerable Software and Affected Versions: H3C R3010 version v100R002L02 Description: A hardcoded password vulnerability was discovered in /etc/shadow, allowing attackers to log in as root. This issue affects the H3C R3010 device, potentially allowing unauthorized access...

9.8CVSS7.4AI score0.00158EPSS
Exploits1References7
CVE
CVEadded 2024/08/16 12:0 a.m.56 views

CVE-2024-42638

CVE-2024-42638 affects H3C Magic B1ST v100R012. The vulnerability is a hardcoded password in the system file /etc/shadow that permits authentication as root, enabling full administrative access. Public metric data from NVD indicates a CRITICAL (9.8) base score with NETWORK attack vector, no privi...

9.8CVSS7.5AI score0.00158EPSS
Exploits1References2Affected Software1
NVD
NVDadded 2024/07/28 10:15 p.m.11 views

CVE-2024-7170

A vulnerability was found in TOTOLINK A3000RU 5.9c.5185. It has been rated as problematic. This issue affects some unknown processing of the file /webcste/cgi-bin/product.ini. The manipulation leads to use of hard-coded password. The exploit has been disclosed to the public and may be used. The...

8.8CVSS0.00116EPSS
Exploits1References4
CNVD
CNVDadded 2024/07/19 12:0 a.m.5 views

Tenda i29 Trust Management Issues Vulnerabilities

The Tenda i29 is a wireless router from the Chinese company Tenda. A trust management issue vulnerability exists in the Tenda i29 version V1.0.0.5, which originates from a hardcoded password containing root. An attacker can exploit this vulnerability to cause authentication bypass...

9.8CVSS7AI score0.00431EPSS
Exploits1References1
OSV
OSVadded 2024/07/16 4:15 p.m.2 views

CVE-2024-35338

Tenda i29V1.0 V1.0.0.5 was discovered to contain a hardcoded password for root...

9.8CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2024/07/16 4:15 p.m.19 views

CVE-2024-35338

Tenda i29V1.0 V1.0.0.5 was discovered to contain a hardcoded password for root...

9.8CVSS0.00431EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2024/07/16 12:0 a.m.3 views

PT-2024-26439 · Tenda · Tenda I29

Name of the Vulnerable Software and Affected Versions: Tenda i29V1.0 version 1.0.0.5 Description: The issue is related to a hardcoded password for the root user. This means that the password is embedded directly into the software, potentially allowing unauthorized access. Recommendations: For Ten...

9.8CVSS7.4AI score0.00431EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2024/07/16 12:0 a.m.15 views

CVE-2024-35338

Tenda i29V1.0 V1.0.0.5 was discovered to contain a hardcoded password for root...

7.5AI score0.00431EPSS
Exploits1References1
OSV
OSVadded 2024/06/24 9:15 p.m.1 views

CVE-2024-38902

H3C Magic R230 V100R002 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...

9.8CVSS5.8AI score0.0033EPSS
Exploits1References1
NVD
NVDadded 2024/06/24 9:15 p.m.16 views

CVE-2024-38902

H3C Magic R230 V100R002 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...

9.8CVSS0.0033EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2024/06/24 12:0 a.m.2 views

PT-2024-28270 · H3C · H3C Magic R230

Name of the Vulnerable Software and Affected Versions: H3C Magic R230 version V100R002 Description: A hardcoded password vulnerability was discovered in /etc/shadow, allowing attackers to log in as root. Recommendations: For H3C Magic R230 version V100R002, consider changing the hardcoded passwor...

9.8CVSS7.4AI score0.0033EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2024/06/24 12:0 a.m.8 views

CVE-2024-38902

H3C Magic R230 V100R002 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...

7.5AI score0.0033EPSS
Exploits1References1
CVE
CVEadded 2024/06/24 12:0 a.m.53 views

CVE-2024-38902

CVE-2024-38902 affects H3C Magic R230, specifically version V100R002. The description across sources confirms a hardcoded password in /etc/shadow that can allow an attacker to log in as root. Public records from NVD/Red Hat/CNVD/CVE entries corroborate the vulnerability details (no exploit specif...

9.8CVSS7.7AI score0.0033EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder