92 matches found
Vinchin Backup And Recovery 7.2 Default Root Credentials
CVE ID: CVE-2024-22902 Title: Default Root Credentials Vulnerability in Vinchin Backup & Recovery v7.2 Suggested Description: Vinchin Backup & Recovery version 7.2 has been identified as being configured with default root credentials, posing a significant security vulnerability. Additional...
CVE-2023-20101
A vulnerability in Cisco Emergency Responder could allow an unauthenticated, remote attacker to log in to an affected device using the root account, which has default, static credentials that cannot be changed or deleted. This vulnerability is due to the presence of static user credentials for th...
PT-2023-5675 · Cisco · Cisco Emergency Responder
Name of the Vulnerable Software and Affected Versions: Cisco Emergency Responder affected versions not specified Description: The issue is related to the presence of static user credentials for the root account in Cisco Emergency Responder, which are typically reserved for use during development...
Cisco Emergency Responder 信任管理问题漏洞
Cisco Emergency Responder is an emergency response framework from Cisco USA. A trust management issue vulnerability exists in Cisco Emergency Responder version 12.51SU4, which arises from the presence of static user credentials for the root account, which are typically used during development, an...
PT-2023-20642 · Usr · Usr-G806
Name of the Vulnerable Software and Affected Versions: USR USR-G806 version 1.0.41 Description: A critical issue was found in the Web Management Page component, where the manipulation of the username/password argument with the input root leads to the use of a hard-coded password. This can be...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Apache Shardingsphere_Elasticjob-Ui
CVE-2022-22733 CVE-2022-22733 is a vulnerabilit that affects...
The vulnerability of the MinIO object storage server, related to insecure management of privileges, allows an attacker to disable access to the root account’s credentials.
The vulnerability of the MinIO object storage server relates to a user with administrator privileges in the console. This user can potentially create another user that matches the root access credentials. Once this user is successfully created, the root account’s credentials will no longer functi...
ROS-20230411-03
The Minio object store vulnerability is related to a user with console administrator privileges who could potentially create a user that matches the root access key, once this user is successfully created, root credentials will stop working properly. Exploitation of the of the vulnerability could...
CVE-2021-41506
Xiaongmai AHB7008T-MH-V2, AHB7804R-ELS, AHB7804R-MH-V2, AHB7808R-MS-V2, AHB7808R-MS, AHB7808T-MS-V2, AHB7804R-LMS, HI351850H10LS39 V4.02.R11.7601.Nat.Onvif.20170420, V4.02.R11.Nat.Onvif.20160422, V4.02.R11.7601.Nat.Onvif.20170424, V4.02.R11.Nat.Onvif.20170327, V4.02.R11.Nat.Onvif.20161205,...
PT-2022-11421 · Xiongmai · Xiaongmai Ahb7804R-Els +4
Name of the Vulnerable Software and Affected Versions: Xiaongmai AHB7008T-MH-V2 Xiaongmai AHB7804R-ELS Xiaongmai AHB7804R-MH-V2 Xiaongmai AHB7808R-MS-V2 Xiaongmai AHB7808R-MS Xiaongmai AHB7808T-MS-V2 Xiaongmai AHB7804R-LMS HI3518 50H10L S39 version V4.02.R11.7601.Nat.Onvif.20170420 HI3518 50H10L...
CVE-2022-1668
Weak default root user credentials allow remote attackers to easily obtain OS superuser privileges over the open TCP port for SSH...
PT-2021-23119 · Minio · Minio
Name of the Vulnerable Software and Affected Versions: Minio versions RELEASE.2021-10-10T16-53-30Z through RELEASE.2021-10-12T23-59-59Z Description: The issue involves bypassing policy restrictions on regular users in Minio, a Kubernetes native application for cloud storage. Normally, the...
Cypress Solutions CTM-200/CTM-ONE Hard-Coded Credentials Remote Root
!/usr/bin/env python3 Cypress Solutions CTM-200/CTM-ONE Hard-coded Credentials Remote Root Telnet/SSH Vendor: Cypress Solutions Inc. Product web page: https://www.cypress.bc.ca Affected version: CTM-ONE 1.3.6-latest CTM-ONE 1.3.1 CTM-ONE 1.1.9 CTM200 2.7.1.5659-latest CTM200 2.0.5.3356-184 Summar...
CVE-2020-11925
An issue was discovered in Luvion Grand Elite 3 Connect through 2020-02-25. Authentication to the device is based on a username and password. The root credentials are the same across all devices of this model...
Design/Logic Flaw
An issue was discovered in Luvion Grand Elite 3 Connect through 2020-02-25. Authentication to the device is based on a username and password. The root credentials are the same across all devices of this model...
CVE-2020-11925
An issue was discovered in Luvion Grand Elite 3 Connect through 2020-02-25. Authentication to the device is based on a username and password. The root credentials are the same across all devices of this model...
Luvion Grand Elite 3 Connect 安全漏洞
Luvion Grand Elite 3 Connect Plus HD baby monitor is a smart monitor from Luvion, Netherlands. It monitors the baby's activity A security vulnerability exists in the Luvion Grand Elite 3 Connect through 2020-02-25, which stems from the device's authentication method being a username and password,...
PT-2021-9431 · Luvion · Luvion Grand Elite 3 Connect
Name of the Vulnerable Software and Affected Versions: Luvion Grand Elite 3 Connect versions through 2020-02-25 Description: An issue was discovered where authentication to the device is based on a username and password, with the root credentials being the same across all devices of this model...
CVE-2021-27151
An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded rootmet / m3tr0r00t credentials for an ISP...
FiberHome HG6245D devices 信任管理问题漏洞
The HG6245D is an FTTH ONT router from FiberHome. A hard-coded credentials vulnerability exists in the FiberHome HG6245D. The vulnerability stems from the web daemon containing hardcoded rootmet/m3tr0r00t credentials against an ISP. No details of the vulnerability are provided at this time...