CVE-2016-5670

CVE-2016-5670 affects Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040, which use non-random default credentials (admin:admin) for the web management interface. This hard-coded credential baseline enables remote attackers to gain privileged, unauthenticated access vi...

CVE-2016-2362

Fonality previously trixbox Pro 12.6 through 14.1i before 2016-06-01 has a hardcoded password for the FTP account, which allows remote attackers to obtain access via a 1 FTP or 2 SSH connection...

CVE-2016-2362

Fonality previously trixbox Pro 12.6 through 14.1i before 2016-06-01 has a hardcoded password for the FTP account, which allows remote attackers to obtain access via a 1 FTP or 2 SSH connection...

CVE-2016-2362

Fonality previously trixbox Pro 12.6 through 14.1i before 2016-06-01 has a hardcoded password for the FTP account, which allows remote attackers to obtain access via a 1 FTP or 2 SSH connection...

CVE-2016-2362

Fonality (formerly trixbox Pro) 12.6–14.1i before 2016-06-01 contains a hardcoded FTP password, enabling remote attackers to log in via FTP or SSH and gain access as the ‘nobody’ user. Multiple sources (NVD entry CVE-2016-2362, related CNVD/CVE records, and CERT entries) corroborate that this vul...

OneLogin SAML SSO <= 2.1.8 - Provisioned User Hardcoded Password

The OneLogin SAML SSO WordPress plugin was affected by a Provisioned User Hardcoded Password security vulnerability...

CVE-2016-2343

Patterson Dental Eaglesoft 17 has a hardcoded password of sql for the dba account, which allows remote attackers to obtain sensitive Dental.DB patient information via SQL statements...

CVE-2016-2343

Patterson Dental Eaglesoft 17 has a hardcoded password of sql for the dba account, which allows remote attackers to obtain sensitive Dental.DB patient information via SQL statements...

Hardcoded credentials

Patterson Dental Eaglesoft 17 has a hardcoded password of sql for the dba account, which allows remote attackers to obtain sensitive Dental.DB patient information via SQL statements...

CVE-2016-2343

The CVE-2016-2343 in Patterson Dental Eaglesoft 17 involves a hard-coded database password (sql) used by the dba account, enabling a remote attacker with network access to obtain sensitive patient data from the Dental.DB via SQL statements. Affected component is the Eaglesoft database backend; ro...

CVE-2016-2343

Patterson Dental Eaglesoft 17 has a hardcoded password of sql for the dba account, which allows remote attackers to obtain sensitive Dental.DB patient information via SQL statements...

Hardcoded credentials

Zhuhai RaySharp firmware has a hardcoded root password, which makes it easier for remote attackers to obtain access via a session on TCP port 23 or 9000...

CVE-2015-8286

Zhuhai RaySharp firmware has a hardcoded root password, which makes it easier for remote attackers to obtain access via a session on TCP port 23 or 9000...

CVE-2015-8286

Zhuhai RaySharp firmware has a hardcoded root password, which makes it easier for remote attackers to obtain access via a session on TCP port 23 or 9000...

CVE-2016-2230

OpenELEC and RasPlex devices have a hardcoded password for the root account, which makes it easier for remote attackers to obtain access via an SSH session...

CVE-2016-2230

CVE-2016-2230 affects OpenELEC and RasPlex, where the root account has a hardcoded password. This enables remote attackers to access via SSH with high impact (C, I, A likely affected) as indicated by the CVSS metrics in the records. Connected sources corroborate the existence of default credentia...

CVE-2016-2230

OpenELEC and RasPlex devices have a hardcoded password for the root account, which makes it easier for remote attackers to obtain access via an SSH session...

Lenovo SHAREit Wifi hotspot component access rights vulnerability

Lenovo SHAREit 茄子快传 for Windows is a Windows-based file-sharing software from the Chinese company Lenovo.Wifi hotspot is one of the components of Wifi hotspot. An access privilege vulnerability exists in the Wifi hotspot component of Lenovo SHAREit for Windows prior to version 3.2.0, due to the...

CVE-2016-1491

The Wifi hotspot in Lenovo SHAREit before 3.2.0 for Windows, when configured to receive files, has a hardcoded password of 12345678, which makes it easier for remote attackers to obtain access by leveraging a position within the WLAN coverage area...

CVE-2016-1491

The Wifi hotspot in Lenovo SHAREit before 3.2.0 for Windows, when configured to receive files, has a hardcoded password of 12345678, which makes it easier for remote attackers to obtain access by leveraging a position within the WLAN coverage area...