CVE-2022-31210

An issue was discovered in Infiray IRAY-A8Z3 1.0.957. The binary file /usr/local/sbin/webproject/setparam.cgi contains hardcoded credentials to the web application. Because these accounts cannot be deactivated or have their passwords changed, they are considered to be backdoor accounts...

CVE-2022-31210

CVE-2022-31210 affects Infiray IRAY-A8Z3 v1.0.957. The binary /usr/local/sbin/webproject/set_param.cgi contains hardcoded credentials, creating backdoor accounts that cannot be disabled or password-changed. Red Hat and NVD entries corroborate the same description. No patch/version fix is indicate...

Hardcoded credentials

Isode SWIFT v4.0.2 was discovered to contain hard-coded credentials in the Registry Editor. This allows attackers to access sensitive information such as user credentials and certificates...

Backdoor.Win32.EvilGoat.b MVID-2022-0619 Hardcoded Credential

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/20daf01e941f966b21a7ae431faefc65.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.EvilGoat.b Vulnerability: Weak Hardcoded Credentials Description: The malwa...

Edimax Technology IC-3140W 信任管理问题漏洞

Edimax Technology Ipcam IC-3140W is a webcam from China-based Edimax Technology. A security vulnerability exists in the Edimax Technology IC-3140W version 3.11, which originates from the use of an administrator's username and password that are hardcoded...

TVT CCTV Hardcoded Credentials

An hardcoded credentials vulnerability exists in TVT CCTV. Successful exploitation of this vulnerability would allow remote attackers to obtain sensitive information and gain unauthorized access into the affected system...

PT-2022-3161 · Emerson · Emerson Deltav

Name of the Vulnerable Software and Affected Versions: Emerson DeltaV versions through 2022-04-29 Description: The issue is related to the misuse of passwords in Emerson DeltaV Distributed Control System DCS controllers and IO cards, allowing an attacker to gain unauthorized access to protected...

PT-2022-3083 · Honeywell · Honeywell Controledge

Name of the Vulnerable Software and Affected Versions: Honeywell ControlEdge versions through R151.1 Description: The issue is related to the use of hard-coded credentials in the Honeywell ControlEdge programmable logic controllers. This could allow a remote attacker to gain elevated privileges...

PT-2022-3091 · Motorola · Motorola Ace1000 Rtu

Name of the Vulnerable Software and Affected Versions: Motorola ACE1000 RTU versions prior to 2022-05-02 Description: The issue is related to the use of hardcoded credentials in the XRT LAN-to-radio gateway and XNL microcode software of the Motorola ACE1000 RTU. This allows a remote attacker to...

PT-2022-3160 · Emerson · Emerson Deltav Distributed Control System

Name of the Vulnerable Software and Affected Versions: Emerson DeltaV Distributed Control System DCS controllers and IO cards through 2022-04-29 Description: The issue is related to the misuse of passwords and the use of hardcoded credentials in the TELNET service on port 18550, which provides...

PT-2022-3157 · Emerson · Emerson Deltav Distributed Control System

Name of the Vulnerable Software and Affected Versions: Emerson DeltaV Distributed Control System DCS controllers and IO cards through 2022-04-29 Description: The issue is related to the misuse of passwords and the presence of hardcoded credentials in the FTP service of the Emerson DeltaV...

PT-2022-3178 · Honeywell +1 · Honeywell Experion Pks Safety Manager +1

Name of the Vulnerable Software and Affected Versions: Honeywell Experion PKS Safety Manager version 5.02 Description: The issue is related to the use of hard-coded credentials in the Honeywell Experion PKS Safety Manager. The affected component is the POLO bootloader. An attacker with access to...

PT-2022-3154 · Bently Nevada · Bently Nevada 3700 Series

Name of the Vulnerable Software and Affected Versions: Bently Nevada 3700 series versions through 2022-04-29 Description: The issue is related to the use of hardcoded credentials in the maintenance interface of the Bently Nevada 3700 series. This interface is accessible on port 4001/TCP. An...

Infiray IRAY-A8Z3 thermal camera 安全漏洞

The Infiray IRAY-A8Z3 thermal camera is a thermal camera from the Chinese company Infiray. A security vulnerability exists in the Infiray IRAY-A8Z3 thermal camera version 1.0.957, which originates from the use of hard-coded Web credentials, authenticated remote code execution, buffer overflow,...

Infiray IRAY-A8Z3 1.0.957 Code Execution / Overflow / Hardcoded Credentials

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple Vulnerabilities product: Infiray IRAY-A8Z3 thermal camera vulnerable version: V1.0.957 fixed version: None CVE number: CVE-2022-31208, CVE-2022-31209,...

Hardcoded credentials

All versions of package @discordjs/opus are vulnerable to Denial of Service DoS when trying to encode using an encoder with zero channels, or a non-initialized buffer. This leads to a hard crash...

CVE-2022-31619

A vulnerability has been identified in Teamcenter V12.4 All versions V12.4.0.13, Teamcenter V13.0 All versions V13.0.0.9, Teamcenter V13.1 All versions V13.1.0.9, Teamcenter V13.2 All versions V13.2.0.9, Teamcenter V13.3 All versions V13.3.0.3, Teamcenter V14.0 All versions V14.0.0.2. Java EE...

Hardcoded credentials

A vulnerability has been identified in Teamcenter V12.4 All versions V12.4.0.13, Teamcenter V13.0 All versions V13.0.0.9, Teamcenter V13.1 All versions V13.1.0.9, Teamcenter V13.2 All versions V13.2.0.9, Teamcenter V13.3 All versions V13.3.0.3, Teamcenter V14.0 All versions V14.0.0.2. Java EE...

CVE-2022-31619

A vulnerability has been identified in Teamcenter V12.4 All versions V12.4.0.13, Teamcenter V13.0 All versions V13.0.0.9, Teamcenter V13.1 All versions V13.1.0.9, Teamcenter V13.2 All versions V13.2.0.9, Teamcenter V13.3 All versions V13.3.0.3, Teamcenter V14.0 All versions V14.0.0.2. Java EE...

PT-2022-20874 · Siemens · Teamcenter

Name of the Vulnerable Software and Affected Versions: Teamcenter versions prior to V12.4.0.13 Teamcenter versions prior to V13.0.0.9 Teamcenter versions prior to V13.1.0.9 Teamcenter versions prior to V13.2.0.9 Teamcenter versions prior to V13.3.0.3 Teamcenter versions prior to V14.0.0.2...