Advantech EKI-6333AC-2G和Advantech EKI-6333AC-2GD 安全漏洞

The Advantech EKI-6333AC-2G and Advantech EKI-6333AC-2GD are both industrial-grade wireless access points APs from Advantech, China. A security vulnerability exists in the Advantech EKI-6333AC-2G version 1.6.3 and earlier, EKI-6333AC-2GD version v1.6.3 and earlier, and EKI-6333AC-1GPO version...

PT-2024-34167 · Advantech · Advantech Eki-6333Ac-2G +1

Name of the Vulnerable Software and Affected Versions: Advantech EKI-6333AC-2G versions 1.6.3 and earlier Advantech EKI-6333AC-2GD versions 1.6.3 and earlier Advantech EKI-6333AC-1GPO versions 1.2.1 and earlier Description: A hard-coded credentials issue affects the backup configuration...

CVE-2024-11630

A vulnerability has been found in E-Lins H685, H685f, H700, H720, H750, H820, H820Q, H820Q0 and H900 up to 3.2 and classified as critical. This vulnerability affects unknown code of the component OEM Backend. The manipulation leads to hard-coded credentials. The attack can be initiated remotely...

CVE-2024-11630 E-Lins H685/H685f/H700/H720/H750/H820/H820Q/H820Q0/H900 OEM Backend hard-coded credentials

A vulnerability has been found in E-Lins H685, H685f, H700, H720, H750, H820, H820Q, H820Q0 and H900 up to 3.2 and classified as critical. This vulnerability affects unknown code of the component OEM Backend. The manipulation leads to hard-coded credentials. The attack can be initiated remotely...

CVE-2024-11630 E-Lins H685/H685f/H700/H720/H750/H820/H820Q/H820Q0/H900 OEM Backend hard-coded credentials

A vulnerability has been found in E-Lins H685, H685f, H700, H720, H750, H820, H820Q, H820Q0 and H900 up to 3.2 and classified as critical. This vulnerability affects unknown code of the component OEM Backend. The manipulation leads to hard-coded credentials. The attack can be initiated remotely...

CVE-2024-11630

CVE-2024-11630 affects E-Lins H685/H685f/H700/H720/H750/H820/H820Q/H820Q0/H900 devices (up to firmware 3.2) due to hard-coded credentials in the OEM Backend component. The issue enables remote exploitation with no user interaction required; the vulnerability has been disclosed and attackers may l...

CVE-2024-5722

Logsign Unified SecOps Platform HTTP API Hard-coded Cryptographic Key Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Logsign Unified SecOps Platform. Authentication is not required to exploit this...

CVE-2023-51638

Allegra Hard-coded Credentials Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of a...

CVE-2023-51638

CVE-2023-51638 describes an authentication bypass in Allegra caused by a hard-coded password configured in the database. Multiple connected sources confirm: (1) the flaw is a hard-coded credential in the configuration of the database, enabling remote authentication bypass without user interaction...

CVE-2023-51638 Allegra Hard-coded Credentials Authentication Bypass Vulnerability

Allegra Hard-coded Credentials Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of a...

CVE-2024-45837

Use of hard-coded cryptographic key issue exists in AIPHONE IX SYSTEM, IXG SYSTEM, and System Support Software. A network-adjacent unauthenticated attacker may log in to SFTP service and obtain and/or manipulate unauthorized files...

CVE-2024-45837

Use of hard-coded cryptographic key issue exists in AIPHONE IX SYSTEM, IXG SYSTEM, and System Support Software. A network-adjacent unauthenticated attacker may log in to SFTP service and obtain and/or manipulate unauthorized files...

CVE-2024-45837

Summary of CVE-2024-45837 : AIPHONE IX SYSTEM, IXG SYSTEM, and System Support Software are affected by a vulnerability described as a use of a hard-coded cryptographic key. This flaw enables a network-adjacent, unauthenticated attacker to log in to the SFTP service and obtain and/or manipulate un...

CVE-2024-45837

Use of hard-coded cryptographic key issue exists in AIPHONE IX SYSTEM, IXG SYSTEM, and System Support Software. A network-adjacent unauthenticated attacker may log in to SFTP service and obtain and/or manipulate unauthorized files...

Allegra 信任管理问题漏洞

Allegra is a project management software for mid-sized organizations from Allegra. A trust management issue vulnerability exists in Allegra that stems from the inclusion of a hard-coded credential that leads to an authentication bypass vulnerability...

PT-2024-17145 · E Lins · E-Lins H720 +6

Name of the Vulnerable Software and Affected Versions: E-Lins H685 versions up to 3.2 E-Lins H685f versions up to 3.2 E-Lins H700 versions up to 3.2 E-Lins H720 versions up to 3.2 E-Lins H750 versions up to 3.2 E-Lins H820 versions up to 3.2 E-Lins H820Q versions up to 3.2 E-Lins H820Q0 versions ...

AIPHONE IX SYSTEM和AIPHONE IXG SYSTEM 安全漏洞

AIPHONE IX SYSTEM and AIPHONE IXG SYSTEM are both products of AIPHONE CORPORATION Japan AIPHONE IX SYSTEM is an IP visual intercom system.AIPHONE IXG SYSTEM is an IP-based residential system. A security vulnerability exists in AIPHONE IX SYSTEM and AIPHONE IXG SYSTEM that stems from the presence ...

E-Lins多款产品 安全漏洞

E-Lins H685 and others are a cellular router from E-Lins. A security vulnerability exists in various E-Lins products that stems from allowing the use of hard-coded credentials. The following products are affected: the E-Lins H685, H685f, H700, H720, H750, H820, H820Q, H820Q0, and H900...

Logsign Unified SecOps Platform 安全漏洞

Logsign Unified SecOps Platform is a security operations platform from Logsign, Inc. for collecting, storing, analyzing, and responding to security data from a variety of sources. A security vulnerability exists in Logsign Unified SecOps Platform versions prior to 6.4.8 that stems from the use of...

Tenda W30E Hardcoded Password Vulnerability

The Tenda W30E is a router from the Chinese company Tenda. The Tenda W30E suffers from a hard-coded password vulnerability that stems from the presence of a hard-coded password issue that can be exploited by an attacker to log in as root...