Lucene search
K

1190 matches found

Positive Technologies
Positive Technologies
added 2026/03/15 12:0 a.m.3 views

PT-2026-25729

Name of the Vulnerable Software and Affected Versions ZKTeco ZKBioSecurity version 3.0 Description The software contains a local authorization bypass in the visLogin.jsp component. This allows attackers to authenticate without valid credentials by spoofing localhost requests. The...

6.8CVSS5.4AI score0.00149EPSS
Exploits1References9
RedhatCVE
RedhatCVE
added 2026/03/11 7:9 a.m.4 views

CVE-2025-70802

Tenda G1V3.1si V16.01.7.8 Firmware V16.01.7.8 was discovered to contain a hardcoded password vulnerability in /etcro/shadow, which allows attackers to log in as root...

8.4CVSS5.8AI score0.00179EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/11 7:9 a.m.5 views

CVE-2025-70798

Tenda i24V3.0si V3.0.0.5 Firmware V3.0.0.5 was discovered to contain a hardcoded password vulnerability in /etcro/shadow, which allows attackers to log in as root...

8.4CVSS5.8AI score0.00179EPSS
Exploits1References1
EUVD
EUVD
added 2026/03/10 9:32 p.m.3 views

EUVD-2025-208540

Tenda G1V3.1si V16.01.7.8 Firmware V16.01.7.8 was discovered to contain a hardcoded password vulnerability in /etcro/shadow, which allows attackers to log in as root...

5.8AI score0.00179EPSS
Exploits1References3
EUVD
EUVD
added 2026/03/10 9:32 p.m.5 views

EUVD-2025-208541

Tenda G1V3.1si V16.01.7.8 Firmware V16.01.7.8 was discovered to contain a hardcoded password vulnerability in /etcro/shadow, which allows attackers to log in as root...

5.8AI score0.00179EPSS
Exploits1References3
EUVD
EUVD
added 2026/03/10 9:32 p.m.4 views

EUVD-2025-208539

Tenda i24V3.0si V3.0.0.5 Firmware V3.0.0.5 was discovered to contain a hardcoded password vulnerability in /etcro/shadow, which allows attackers to log in as root...

5.8AI score0.00179EPSS
Exploits1References3
NVD
NVD
added 2026/03/10 9:16 p.m.6 views

CVE-2025-70798

Tenda i24V3.0si V3.0.0.5 Firmware V3.0.0.5 was discovered to contain a hardcoded password vulnerability in /etcro/shadow, which allows attackers to log in as root...

8.4CVSS0.00179EPSS
Exploits1References2
NVD
NVD
added 2026/03/10 9:16 p.m.4 views

CVE-2025-70802

Tenda G1V3.1si V16.01.7.8 Firmware V16.01.7.8 was discovered to contain a hardcoded password vulnerability in /etcro/shadow, which allows attackers to log in as root...

8.4CVSS0.00179EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/10 12:0 a.m.2 views

CVE-2025-70798

Tenda i24V3.0si V3.0.0.5 Firmware V3.0.0.5 was discovered to contain a hardcoded password vulnerability in /etcro/shadow, which allows attackers to log in as root...

5.8AI score0.00179EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/03/10 12:0 a.m.6 views

CVE-2025-70802

Tenda G1V3.1si V16.01.7.8 Firmware V16.01.7.8 was discovered to contain a hardcoded password vulnerability in /etcro/shadow, which allows attackers to log in as root...

5.8AI score0.00179EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/10 12:0 a.m.27 views

CVE-2025-70802

Tenda G1V3.1si V16.01.7.8 Firmware V16.01.7.8 was discovered to contain a hardcoded password vulnerability in /etcro/shadow, which allows attackers to log in as root...

0.00179EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/10 12:0 a.m.28 views

CVE-2025-70798

Tenda i24V3.0si V3.0.0.5 Firmware V3.0.0.5 was discovered to contain a hardcoded password vulnerability in /etcro/shadow, which allows attackers to log in as root...

0.00179EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/10 12:0 a.m.5 views

CVE-2025-70802

Tenda G1V3.1si V16.01.7.8 Firmware V16.01.7.8 was discovered to contain a hardcoded password vulnerability in /etcro/shadow, which allows attackers to log in as root...

5.8AI score0.00179EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/03/10 12:0 a.m.8 views

CVE-2025-70798

Tenda i24V3.0si V3.0.0.5 Firmware V3.0.0.5 was discovered to contain a hardcoded password vulnerability in /etcro/shadow, which allows attackers to log in as root...

5.8AI score0.00179EPSS
Exploits1References2
CVE
CVE
added 2026/03/10 12:0 a.m.16 views

CVE-2025-70798

CVE-2025-70798 concerns the Tenda i24V3.0si firmware (v3.0.0.5). Multiple sources confirm a hardcoded password vulnerability in the "/etc_ro/shadow" file that allows an attacker to log in as root. The vulnerability is described consistently across CVE listings and vendor references. Reported impa...

8.4CVSS5.8AI score0.00179EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/03/10 12:0 a.m.7 views

CVE-2025-70802

CVE-2025-70802 affects Tenda G1V3.1si firmware version V16.01.7.8. The vulnerability is a hardcoded password present in /etc_ro/shadow, enabling an attacker to log in as root. Multiple connected sources (NVD, Red Hat, ENISA EUVD, CVE record) corroborate the same description and firmware detail. E...

8.4CVSS5.8AI score0.00179EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/03/04 9:31 a.m.18 views

EUVD-2026-9375

The /root/anaconda-ks.cfg installation configuration file in International Datacasting Corporation IDC SFX SeriesSFX2100 SuperFlex Satellite Receiver insecurely stores the hardcoded root password hash. The password itself is highly insecure and susceptible to offline dictionary attacks using the...

9.2CVSS5.9AI score0.00142EPSS
Exploits1References2
NVD
NVD
added 2026/03/04 8:16 a.m.8 views

CVE-2026-29120

The /root/anaconda-ks.cfg installation configuration file in International Datacasting Corporation IDC SFX SeriesSFX2100 SuperFlex Satellite Receiver insecurely stores the hardcoded root password hash. The password itself is highly insecure and susceptible to offline dictionary attacks using the...

9.2CVSS0.00142EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/03/04 8:10 a.m.32 views

CVE-2026-29120 Insecure, Hardcoded Root Password Stored in Anaconda Configuration File On IDC SFX2100 Satellite Receiver

The /root/anaconda-ks.cfg installation configuration file in International Datacasting Corporation IDC SFX SeriesSFX2100 SuperFlex Satellite Receiver insecurely stores the hardcoded root password hash. The password itself is highly insecure and susceptible to offline dictionary attacks using the...

9.2CVSS0.00142EPSS
Exploits1References1
CVE
CVE
added 2026/03/04 8:10 a.m.26 views

CVE-2026-29120

Technical details beyond what’s in the Initial Description are not publicly provided in the connected documents. Monitor for updates to the CVE-2026-29120 entry as new disclosures may clarify affected components, impact, or remediation.

9.2CVSS5.9AI score0.00142EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder