3038 matches found
Hardcoded credentials
Akuvox E11 uses a hard-coded cryptographic key, which could allow an attacker to decrypt sensitive information...
PT-2023-1633 · Unknown · Mxsecurity
Name of the Vulnerable Software and Affected Versions: MXsecurity version 1.0 Description: The issue is related to hardcoded credentials in MXsecurity, which can be exploited to craft arbitrary JWT tokens and bypass authentication for web-based APIs. This allows a remote attacker to elevate their...
Hardcoded credentials
Use of hard-coded credentials vulnerability in SS1 Ver.13.0.0.40 and earlier and Rakuraku PC Cloud Agent Ver.2.1.8 and earlier allows a remote attacker to obtain the password of the debug tool and execute it. As a result of exploiting this vulnerability with CVE-2023-22335 and CVE-2023-22336...
Hardcoded credentials
Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio's share links i.e. creating a Gradio app and then setting share=True, a private SSH key is sent to any...
CVE-2022-46637
Prolink router PRS1841 was discovered to contain hardcoded credentials for its Telnet and FTP services...
CVE-2022-46637
Prolink router PRS1841 was discovered to contain hardcoded credentials for its Telnet and FTP services...
Hardcoded credentials
Prolink router PRS1841 was discovered to contain hardcoded credentials for its Telnet and FTP services...
PT-2023-14973 · Prolink · Prolink Router Prs1841
Name of the Vulnerable Software and Affected Versions: Prolink router PRS1841 Description: The Prolink router PRS1841 contains hardcoded credentials for its Telnet and FTP services. This issue allows unauthorized access to the device. Recommendations: For Prolink router PRS1841, consider changing...
CVE-2022-46637
Prolink router PRS1841 was discovered to contain hardcoded credentials for its Telnet and FTP services...
CVE-2022-46637
Prolink router PRS1841 was discovered to contain hardcoded credentials for its Telnet and FTP services...
CVE-2022-46637
CVE-2022-46637 concerns the ProLink router PRS1841, which is reported to contain hardcoded credentials for Telnet and FTP, enabling unauthorized access. The CVE entry cites a CRITICAL 9.8 CVSS score (Network vector, low complexity, no user interaction) with high impact on confidentiality, integri...
SUSE CVE-2015-2907
Mobile Devices aka MDI C4 OBD-II dongles with firmware 2.x and 3.4.x, as used in Metromile Pulse and other products, have hardcoded SSH credentials, which makes it easier for remote attackers to obtain access by leveraging knowledge of the required username and password...
Hardcoded credentials
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.0 before 15.6.7, all versions starting from 15.7 before 15.7.6, all versions starting from 15.8 before 15.8.1. It was possible to trigger a DoS attack by uploading a malicious Helm chart...
Hardcoded credentials
A vulnerability was found in Deye/Revolt/Bosswerk Inverter MW315U54061.47/MW315U54061.471. It has been rated as problematic. This issue affects some unknown processing of the component Access Point Setting Handler. The manipulation with the input 12345678 leads to use of hard-coded password. It i...
Hardcoded credentials
PowerPath Management Appliance with versions 3.3 & 3.2 contains a Hardcoded Cryptographic Keys vulnerability. Authenticated admin users can exploit the issue that leads to view and modifying sensitive information stored in the application...
CVE-2022-45766
Hardcoded credentials in Global Facilities Management Software GFMS Version 3 software distributed by Key Systems Management permits remote attackers to impact availability, confidentiality, accessibility and dependability of electronic key boxes...
Hardcoded credentials
Hardcoded credentials in Global Facilities Management Software GFMS Version 3 software distributed by Key Systems Management permits remote attackers to impact availability, confidentiality, accessibility and dependability of electronic key boxes...
CVE-2022-45766
The CVE-2022-45766 entry concerns Key Systems Management’s GFMS software, version 3. It states that hardcoded credentials exist in GFMS v3, which could allow remote attackers to impact the availability, confidentiality, accessibility and dependability of electronic key boxes. The provided referen...
CVE-2022-45766
Hardcoded credentials in Global Facilities Management Software GFMS Version 3 software distributed by Key Systems Management permits remote attackers to impact availability, confidentiality, accessibility and dependability of electronic key boxes...
Hardcoded credentials
Hardcoded AES key to encrypt cardemulation PINs in NFC prior to SMR Jan-2023 Release 1 allows attackers to access cardemulation PIN...