CVE-2015-7921

The FTP server in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000, and PFXEXGRPLS before 4.05.000 has hardcoded credentials, which makes it easier for remote attackers to bypass authentication by leveraging knowledge of these credentials...

Hardcoded credentials

The FTP server in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000, and PFXEXGRPLS before 4.05.000 has hardcoded credentials, which makes it easier for remote attackers to bypass authentication by leveraging knowledge of these credentials...

CVE-2015-7921

The FTP server in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000, and PFXEXGRPLS before 4.05.000 has hardcoded credentials, which makes it easier for remote attackers to bypass authentication by leveraging knowledge of these credentials...

CVE-2015-7921

The CVE describes hard-coded credentials in the FTP server of Pro-face GP-Pro EX (affected models EX-ED, PFXEXEDV, PFXEXEDLS, PFXEXGRPLS) prior to version 4.05.000, enabling remote authentication bypass. Root cause: hard-coded credentials in the FTP service. Impact: unauthorized access to device ...

Hardcoded credentials

The SysPlant.sys driver in the Application and Device Control ADC component in the client in Symantec Endpoint Protection SEP 12.1 before RU6-MP4 allows remote attackers to execute arbitrary code via a crafted HTML document, related to "RWX Permissions."...

CVE-2016-1329

Cisco NX-OS 6.02U61 through 6.02U65 on Nexus 3000 devices and 6.02A61 through 6.02A65 and 6.02A71 on Nexus 3500 devices has hardcoded credentials, which allows remote attackers to obtain root privileges via a 1 TELNET or 2 SSH session, aka Bug ID CSCuy25800...

Hardcoded credentials

Cisco NX-OS 6.02U61 through 6.02U65 on Nexus 3000 devices and 6.02A61 through 6.02A65 and 6.02A71 on Nexus 3500 devices has hardcoded credentials, which allows remote attackers to obtain root privileges via a 1 TELNET or 2 SSH session, aka Bug ID CSCuy25800...

CVE-2016-1329

Cisco NX-OS 6.02U61 through 6.02U65 on Nexus 3000 devices and 6.02A61 through 6.02A65 and 6.02A71 on Nexus 3500 devices has hardcoded credentials, which allows remote attackers to obtain root privileges via a 1 TELNET or 2 SSH session, aka Bug ID CSCuy25800...

CVE-2016-1329

Cisco NX-OS 6.02U61 through 6.02U65 on Nexus 3000 devices and 6.02A61 through 6.02A65 and 6.02A71 on Nexus 3500 devices has hardcoded credentials, which allows remote attackers to obtain root privileges via a 1 TELNET or 2 SSH session, aka Bug ID CSCuy25800...

CVE-2016-1329

CVE-2016-1329 affects Cisco NX-OS on Nexus 3000 (6.0(2)U6(1)–6.0(2)U6(5)) and Nexus 3500 (6.0(2)A6(1)–6.0(2)A6(5), 6.0(2)A7(1)). The root cause is hardcoded/default credentials present in an account created at installation, allowing unauthenticated remote attackers to obtain root privileges via T...

CVE-2015-7261

The FTP service in QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, has hardcoded credentials, which makes it easier for remote attackers to obtain access via a session on TCP port 21...

Hardcoded credentials

The FTP service in QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, has hardcoded credentials, which makes it easier for remote attackers to obtain access via a session on TCP port 21...

CVE-2015-7261

The FTP service in QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, has hardcoded credentials, which makes it easier for remote attackers to obtain access via a session on TCP port 21...

CVE-2015-7261

CVE-2015-7261 affects QNAP iArtist Lite before 1.4.54 (bundled with Signage Station before 2.0.1). The FTP service contains hardcoded credentials, enabling remote access via TCP port 21. Root cause is hard-coded FTP accounts/passwords in iArtist Lite used by Signage Station; impact is unauthorize...

Servision HVG Hardcoded Credentials

Hello... Over a year ago I disclosed several vulnerabilities in Servision HVG network video recording devices. CVE-2015-0929 and CVE-2015-0930. https://www.kb.cert.org/vuls/id/522460 Since it's been a while now, and hardcoded backdoor passwords in "security" devices are the current hotness...

Hardcoded credentials

OpenELEC and RasPlex devices have a hardcoded password for the root account, which makes it easier for remote attackers to obtain access via an SSH session...

Trane ComfortLink II SCC Service Hardcoded Credentials Vulnerability

Talos Vulnerability Report TALOS-2016-0028 Trane ComfortLink II SCC Service Hardcoded Credentials Vulnerability February 8, 2016 CVE Number CVE-2015-2867 Description A design flaw in the Trane ComfortLink II SCC service allows remote attackers to take complete control of the system. During system...

Hardcoded credentials

The Wifi hotspot in Lenovo SHAREit before 3.2.0 for Windows, when configured to receive files, has a hardcoded password of 12345678, which makes it easier for remote attackers to obtain access by leveraging a position within the WLAN coverage area...

Hardcoded credentials

The setUpSubtleUserAccount function in /bin/bw on Harman AMX devices before 2016-01-20 has a hardcoded password for the 1MB@tMaN account, which makes it easier for remote attackers to obtain access via a 1 SSH or 2 HTTP session, a different vulnerability than CVE-2015-8362...

Hardcoded credentials

Cisco Modular Encoding Platform D9036 Software before 02.04.70 has hardcoded 1 root and 2 guest passwords, which makes it easier for remote attackers to obtain access via an SSH session, aka Bug ID CSCut88070...