CVE-2024-9334

CVE-2024-9334 concerns the E‑Kent Pallium Vehicle Tracking system, where the root cause is the use of hard‑coded credentials and storage of sensitive data in a mechanism without proper access control. This combination enables an authentication bypass , potentially allowing unauthorized access to ...

CVE-2024-9334 Information Disclosure in E-Kent's Pallium Vehicle Tracking

Use of Hard-coded Credentials, Storage of Sensitive Data in a Mechanism without Access Control vulnerability in E-Kent Pallium Vehicle Tracking allows Authentication Bypass. This issue affects Pallium Vehicle Tracking: before 17.10.2024...

Vben-Admin 安全漏洞

Vben-Admin is a Vben admin for Hackerhan Personal Developers. A security vulnerability exists in Vben-Admin version 2.10.1, which stems from hard-coded credentials that lead to unauthorized logins...

E-Kent Pallium Vehicle Tracking 安全漏洞

E-Kent Pallium Vehicle Tracking is a vehicle tracking system from E-Kent. A security vulnerability exists in E-Kent Pallium Vehicle Tracking prior to version 17.10.2024, which stems from improperly stored hard-coded credentials and sensitive data, which could lead to authentication bypass...

PT-2025-8941 · E Kent · E-Kent Pallium Vehicle Tracking

Name of the Vulnerable Software and Affected Versions: E-Kent Pallium Vehicle Tracking versions prior to 17.10.2024 Description: The issue affects the authentication mechanism of the software, allowing for authentication bypass due to the use of hard-coded credentials and storage of sensitive dat...

UBUNTU-CVE-2022-49218

In the Linux kernel, the following vulnerability has been resolved: drm/dp: Fix OOB read when handling Post Cursor2 register The linkstatus array was not large enough to read the Adjust Request Post Cursor2 register, so remove the common helper function to avoid an OOB read, found with a...

CVE-2022-49218 drm/dp: Fix OOB read when handling Post Cursor2 register

In the Linux kernel, the following vulnerability has been resolved: drm/dp: Fix OOB read when handling Post Cursor2 register The linkstatus array was not large enough to read the Adjust Request Post Cursor2 register, so remove the common helper function to avoid an OOB read, found with a...

SunGrow iSolarCloud 安全漏洞

SunGrow iSolarCloud is an Android app for new energy power plant management from China SunGrow SunGrow. It is used for power plant data collection, monitoring, operation and maintenance and operation management. A security vulnerability exists in SunGrow iSolarCloud version V2.1.6.20241017 and...

TP-LINK WR845N 安全漏洞

TP-LINK WR845N is a wireless router from China P&L TP-LINK. A security vulnerability exists in the TP-LINK WR845N, which stems from the use of a hard-coded password for the root account...

CVE-2025-1204

The "update" binary in the firmware of the affected product sends attempts to mount to a hard-coded, routable IP address, bypassing existing device network settings to do so. The function triggers if the 'C' button is pressed at a specific time during the boot process. If an attacker is able to...

CVE-2024-52902

IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 client application contains hard coded database passwords in source code which could be used for unauthorized access to the system...

CVE-2024-52902 IBM Cognos Controller information disclosure

IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 client application contains hard coded database passwords in source code which could be used for unauthorized access to the system...

CVE-2024-52902 IBM Cognos Controller information disclosure

IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 client application contains hard coded database passwords in source code which could be used for unauthorized access to the system...

CVE-2024-52902

IBM Cognos Controller 11.0.0–11.0.1 FP3 and IBM Controller 11.1.0 contain hard-coded database passwords in the client application, enabling unauthorized access if exploited. Remediation: upgrade Cognos Controller to 11.0.1 FP4 and Controller to 11.1.0.1 (cloud deploys have corresponding updates)....

IBM Cognos Controller 信任管理问题漏洞

IBM Cognos Controller is a suite of business intelligence and planning solutions from International Business Machines IBM. The product features process automation, financial audit control, and the creation and management of financial reports. IBM Cognos Controller suffers from a trust management...

The vulnerability of the command-line interface (CLI) of the Fortinet FortiManager device management software allows a attacker to disclose confidential information.

The vulnerability of the command-line interface CLI of the Fortinet FortiManager device management software is related to the use of a hard-coded cryptographic key. Exploiting this vulnerability allows an attacker, operating remotely, to disclose confidential information...

Tenda W18E Trust Management Issue Vulnerability

The Tenda W18E is a wireless router from the Chinese company Tenda. The Tenda W18E suffers from a trust management issue vulnerability that stems from the presence of hard-coded credentials, no details of the vulnerability are provided at this time...

CVE-2024-8893

Use of Hard-coded Credentials vulnerability in GoodWe Technologies Co., Ltd. GW1500‑XS allows anyone in physical proximity to the device to fully access the web interface of the inverter via Wi‑Fi.This issue affects GW1500‑XS: 1.1.2.1...

CVE-2024-8893

Use of Hard-coded Credentials vulnerability in GoodWe Technologies Co., Ltd. GW1500‑XS allows anyone in physical proximity to the device to fully access the web interface of the inverter via Wi‑Fi.This issue affects GW1500‑XS: 1.1.2.1...

CVE-2024-8893

Use of Hard-coded Credentials vulnerability in GoodWe Technologies Co., Ltd. GW1500‑XS allows anyone in physical proximity to the device to fully access the web interface of the inverter via Wi‑Fi.This issue affects GW1500‑XS: 1.1.2.1...