Lucene search
K

272 matches found

Positive Technologies
Positive Technologies
added 2024/05/01 12:0 a.m.3 views

PT-2024-24461 · Unknown · Lomag Warehouse Management

Name of the Vulnerable Software and Affected Versions: LoMag WareHouse Management application versions 1.0.20.120 and older Description: The issue concerns the use of hard-coded passwords by default for forms and SQL connections. Recommendations: For versions 1.0.20.120 and older, update the...

8.1CVSS7.4AI score0.0087EPSS
Exploits4References4
CVE
CVE
added 2024/05/01 12:0 a.m.78 views

CVE-2024-32213

The CVE-2024-32213 entry concerns the LoMag WareHouse Management application. Affected software: LoMag WareHouse Management v1.0.20.120 and older. Root cause: by default, the system allows hard-coded passwords of 10 characters with little or no complexity, enabling weak authentication. Impact: we...

5.3CVSS6.9AI score0.0087EPSS
Exploits4References1Affected Software1
Cvelist
Cvelist
added 2024/05/01 12:0 a.m.24 views

CVE-2024-32210

The LoMag WareHouse Management application version 1.0.20.120 and older were to utilize hard-coded passwords by default for forms and SQL connections...

7.5AI score0.00437EPSS
Exploits4References1
Positive Technologies
Positive Technologies
added 2024/05/01 12:0 a.m.3 views

PT-2024-24464 · Unknown · Lomag Warehouse Management

Name of the Vulnerable Software and Affected Versions: LoMag WareHouse Management application versions 1.0.20.120 and older Description: The issue allows weak passwords. By default, hard-coded passwords of 10 characters with little or no complexity are allowed. Recommendations: For versions...

8.1CVSS7AI score0.0087EPSS
Exploits4References3
CNNVD
CNNVD
added 2024/05/01 12:0 a.m.7 views

LoMag WareHouse Management 安全漏洞

LoMag WareHouse Management is a warehouse management software from LoMag. A security vulnerability exists in LoMag WareHouse Management versions 1.0.20.120 and earlier, which stems from the use of hard-coded passwords for forms and SQL connections by default...

8.1CVSS7.3AI score0.0087EPSS
Exploits4References2
Vulnrichment
Vulnrichment
added 2024/05/01 12:0 a.m.15 views

CVE-2024-32210

The LoMag WareHouse Management application version 1.0.20.120 and older were to utilize hard-coded passwords by default for forms and SQL connections...

7.9AI score0.0087EPSS
Exploits4References1
CNNVD
CNNVD
added 2024/05/01 12:0 a.m.3 views

SonicWALL GMS 安全漏洞

SonicWALL GMS is a global management system from SonicWALL, Inc. a powerful and intuitive solution for organizations, distributed enterprises, and service providers to centrally manage and rapidly deploy SonicWall Firewall, Anti-Spam, Backup and Recovery, and Secure Remote Access solutions. A...

7.5CVSS7.7AI score0.00884EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/03/28 12:54 a.m.19 views

CVE-2024-28010

Use of Hard-coded Password in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2, W1200EX-MS, WG1200HS, WG1200HP, WF300HP2, W300P, WF800HP, WR8165N, WG2200HP, WF1200HP2, WG1800HP2, WF1200HP, WG600HP, WG300HP, WF300HP, WG1800HP, WG1400HP,...

7.3AI score0.00577EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/28 12:0 a.m.3 views

NEC Aterm 安全漏洞

The NEC Aterm is a series of wireless routers from Nippon Electric NEC. A security vulnerability exists in NEC Aterm that stems from the use of hard-coded passwords that allow an attacker to execute arbitrary operating system commands over the Internet. The following products and versions are...

9.8CVSS8.9AI score0.00577EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/18 12:0 a.m.5 views

Unitronics Unistream Unilogic Trust Management Issues Vulnerabilities

Unitronics Unistream Unilogic is an integrated controller software platform from Unitronics for developing and programming the Unistream family of programmable logic controllers PLCs. A security vulnerability exists in Unitronics Unistream Unilogic versions prior to 1.35.227, which stems from the...

7.5CVSS6.5AI score0.00431EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/03/18 12:0 a.m.5 views

PT-2024-2275 · Unitronics · Unistream +2

Name of the Vulnerable Software and Affected Versions: Unitronics Unistream Unilogic versions prior to 1.35.227 Description: The issue is related to the use of hard-coded passwords, which may allow an attacker to disclose sensitive information embedded inside the device's firmware. This could...

7.5CVSS6.7AI score0.00431EPSS
Exploits0References8
CNNVD
CNNVD
added 2024/02/15 12:0 a.m.5 views

Comarch ERP XL Security Vulnerability

Comarch ERP XL is an enterprise resource planning ERP software from Comarch Poland. A security vulnerability exists in Comarch ERP XL versions 2020.2.2 through 2023.2, which stems from the use of hard-coded passwords that could allow an attacker to retrieve embedded sensitive data stored in the...

7.5CVSS6.6AI score0.00611EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/01/12 12:0 a.m.5 views

Hongdian Router H8951-4G-ESP Trust Management Issues Vulnerability

The Hongdian Router H8951-4G-ESP is a wireless router from China Hongdian. A security vulnerability exists in versions prior to Hongdian Router H8951-4G-ESP 2310271149 that stems from the use of hard-coded passwords...

9.8CVSS6.7AI score0.00556EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/12/01 12:0 a.m.2 views

Škoda Modular Infotainment Platform 3 Security Vulnerability

Škoda Modular Infotainment Platform 3 MIB3 is a modular infotainment platform from the Czech company Škoda. A security vulnerability exists in Škoda Modular Infotainment Platform 3 that stems from the use of hard-coded passwords. An attacker could exploit the vulnerability to gain full control of...

6.8CVSS6.9AI score0.00313EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/11/16 12:0 a.m.3 views

C-First DVR Security Breach

C-First DVR is a digital video recorder from C-First. A security vulnerability exists in the C-First DVR that stems from the system's use of hard-coded passwords, which could allow an unauthenticated, remote attacker to rewrite or gain access to the configuration information of the affected...

9.8CVSS6.7AI score0.01091EPSS
Exploits0References5
Schneier on Security
Schneier on Security
added 2023/10/11 11:4 a.m.20 views

Cisco Can’t Stop Using Hard-Coded Passwords

Theres a new Cisco vulnerability in its Emergency Responder product: This vulnerability is due to the presence of static user credentials for the root account that are typically reserved for use during development. An attacker could exploit this vulnerability by using the account to log in to an...

7.5AI score
Exploits0
CNNVD
CNNVD
added 2023/09/27 12:0 a.m.6 views

Viessmann Vitogate Security Breach

Viessmann Vitogate is an intelligent control system from Viessmann. A security vulnerability exists in Viessmann Vitogate due to the use of hard-coded passwords in the isValidUser function in /cgi-bin/vitogate.cgi in the component's web management interface...

9.8CVSS6.8AI score0.74697EPSS
Exploits4References4
OSV
OSV
added 2023/09/19 2:15 p.m.2 views

CVE-2023-31808

Technicolor TG670 10.5.N.9 devices contain multiple accounts with hard-coded passwords. One account has administrative privileges, allowing for unrestricted access over the WAN interface if Remote Administration is enabled...

7.2CVSS5.8AI score0.00503EPSS
Exploits0References1
NVD
NVD
added 2023/09/19 2:15 p.m.15 views

CVE-2023-31808

Technicolor TG670 10.5.N.9 devices contain multiple accounts with hard-coded passwords. One account has administrative privileges, allowing for unrestricted access over the WAN interface if Remote Administration is enabled...

7.2CVSS7.2AI score0.00503EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/09/19 2:15 p.m.5 views

CVE-2023-31808

Technicolor TG670 10.5.N.9 devices contain multiple accounts with hard-coded passwords. One account has administrative privileges, allowing for unrestricted access over the WAN interface if Remote Administration is enabled...

7.2CVSS5.7AI score0.00503EPSS
Exploits0References2
Rows per page
Query Builder