Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1186 matches found

OSV
OSVadded 2024/01/30 3:15 p.m.1 views

CVE-2024-24324

TOTOLINK A8000RU v7.1cu.643B20200521 was discovered to contain a hardcoded password for root stored in /etc/shadow...

9.8CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2024/01/30 3:15 p.m.12 views

CVE-2024-24324

TOTOLINK A8000RU v7.1cu.643B20200521 was discovered to contain a hardcoded password for root stored in /etc/shadow...

9.8CVSS9.6AI score0.001EPSS
Exploits1References1
Prion
Prionadded 2024/01/30 3:15 p.m.12 views

Hardcoded credentials

TOTOLINK A8000RU v7.1cu.643B20200521 was discovered to contain a hardcoded password for root stored in /etc/shadow...

7.5CVSS7.6AI score0.001EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/01/30 12:0 a.m.1 views

CVE-2024-24324

TOTOLINK A8000RU v7.1cu.643B20200521 was discovered to contain a hardcoded password for root stored in /etc/shadow...

9.7AI score0.001EPSS
Exploits1References1
CVE
CVEadded 2024/01/30 12:0 a.m.43 views

CVE-2024-24324

CVE-2024-24324 affects TOTOLINK A8000RU, firmware version 7.1cu.643_B20200521, which is reported to store a hardcoded root password in /etc/shadow. The CVE has a high impact (CVSSv3.1: 9.8, CRITICAL) with network access, no user interaction, and no privileges required, per existing metrics. Conne...

9.8CVSS9.5AI score0.001EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologiesadded 2024/01/30 12:0 a.m.3 views

PT-2024-20359 · Totolink · Totolink A8000Ru

Name of the Vulnerable Software and Affected Versions: TOTOLINK A8000RU version 7.1cu.643 B20200521 Description: The issue is related to a hardcoded password for the root user stored in the /etc/shadow file. This could potentially allow unauthorized access to the system. Recommendations: For...

9.8CVSS9.2AI score0.001EPSS
Exploits1References5
Cvelist
Cvelistadded 2024/01/30 12:0 a.m.14 views

CVE-2024-24324

TOTOLINK A8000RU v7.1cu.643B20200521 was discovered to contain a hardcoded password for root stored in /etc/shadow...

9.8AI score0.001EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2024/01/12 12:0 a.m.1 views

PT-2024-13710 · Device · Device

Name of the Vulnerable Software and Affected Versions: Device affected versions not specified Description: The root user password is hardcoded into the device and cannot be changed in the user interface. Additionally, there is an issue where a user's browser may be forced to execute JavaScript an...

9.8CVSS8AI score0.00082EPSS
Exploits0References15
OSV
OSVadded 2024/01/03 1:15 p.m.1 views

CVE-2023-37608

An issue in Automatic Systems SOC FL9600 FirstLane V06 legoT04E00 allows a remote attacker to obtain sensitive information because there is an automaticsystems super admin account with astech as its hardcoded password...

7.5CVSS5.9AI score0.00088EPSS
Exploits4References4
Vulnrichment
Vulnrichmentadded 2024/01/03 12:0 a.m.3 views

CVE-2023-37608

An issue in Automatic Systems SOC FL9600 FirstLane V06 legoT04E00 allows a remote attacker to obtain sensitive information because there is an automaticsystems super admin account with astech as its hardcoded password...

7.3AI score0.00088EPSS
Exploits4References2
Positive Technologies
Positive Technologiesadded 2024/01/03 12:0 a.m.2 views

PT-2024-12647 · Automatic Systems · Automatic Systems Soc Fl9600

Name of the Vulnerable Software and Affected Versions: Automatic Systems SOC FL9600 FirstLane version V06 lego T04E00 Automatic Systems SOC FL9600 FastLine version v.legoT04E00 Description: An issue in Automatic Systems SOC FL9600 allows a remote attacker to obtain sensitive information because...

7.5CVSS7.1AI score0.00088EPSS
Exploits4References12
CVE
CVEadded 2023/12/01 1:41 p.m.58 views

CVE-2023-28895

The CVE-2023-28895 entry concerns Škoda MIB3 infotainment’s PoWer Controller (PWC) with a hard-coded password in the firmware. This allows an attacker with physical access to gain full control of the PWC chip on Škoda Superb III (3V3) 2.0 TDI (2022). Connected documents confirm the hardware/softw...

6.8CVSS4.9AI score0.00062EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2023/08/21 1:15 a.m.1 views

CVE-2023-39808

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain a hardcoded root password which allows attackers to login with root privileges via the SSH service...

9.8CVSS5.8AI score0.00103EPSS
Exploits0References2
NVD
NVDadded 2023/08/21 1:15 a.m.10 views

CVE-2023-39808

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain a hardcoded root password which allows attackers to login with root privileges via the SSH service...

9.8CVSS9.7AI score0.00103EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2023/08/21 12:0 a.m.2 views

PT-2023-27115 · N.V.K.Inter Co. · Ibsg

Name of the Vulnerable Software and Affected Versions: N.V.K.INTER CO., LTD. NVK iBSG version 3.5 Description: The issue is related to a hardcoded root password in the software, which allows attackers to login with root privileges via the SSH service. Recommendations: For version 3.5, consider...

9.8CVSS9.4AI score0.00103EPSS
Exploits0References4
Cvelist
Cvelistadded 2023/08/21 12:0 a.m.15 views

CVE-2023-39808

N.V.K.INTER CO., LTD. NVK iBSG v3.5 was discovered to contain a hardcoded root password which allows attackers to login with root privileges via the SSH service...

9.8AI score0.00103EPSS
Exploits0References2
ICS
ICSadded 2023/06/20 6:0 a.m.32 views

Advantech R-SeeNet

1. EXECUTIVE SUMMARY ​CVSS v3 9.8 ​ATTENTION: Exploitable remotely/low attack complexity ​Vendor: Advantech ​Equipment: R-SeeNet ​Vulnerability: Hard Coded Password, External Control of File Name or Path 2. RISK EVALUATION ​Successful exploitation of these vulnerabilities could allow an attacker...

9.8CVSS9.7AI score0.00109EPSS
Exploits0References10
NVD
NVDadded 2023/05/10 4:15 p.m.14 views

CVE-2023-30351

Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 was discovered to contain a hard-coded default password for root which is stored using weak encryption. This vulnerability allows attackers to connect to the TELNET service or UART by using the exposed credentials...

7.5CVSS7.6AI score0.00083EPSS
Exploits0References2
Prion
Prionadded 2023/05/10 4:15 p.m.26 views

Hardcoded credentials

Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 was discovered to contain a hard-coded default password for the RTSP feed...

7.5CVSS9.6AI score0.00361EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2023/05/10 12:0 a.m.2 views

Tenda CP3 信任管理问题漏洞

Tenda CP3 is a smart camera from Tenda China. A security vulnerability exists in Tenda CP3 version V11.10.00.2211041355, which stems from the device containing a hardcoded default password for RTSP mentions...

9.8CVSS8.4AI score0.00361EPSS
Exploits0References2
Rows per page
Query Builder