Exploit for Use of Hard-coded Credentials in Clickstudios Passwordstate

CVE-20...

PiiGAB M-Bus

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: PiiGAB, Processinformation i Göteborg Aktiebolag Equipment: M-Bus SoftwarePack 900S Vulnerabilities: Code Injection, Improper Restriction of Excessive Authentication Attempts, Unprotected Transport of...

PiiGAB M-Bus 900S 信任管理问题漏洞

PiiGAB M-Bus is a communication protocol used between meters and centralized data collection systems or prepaid units from PiiGAB. A vulnerability with trust management issues exists in PiiGAB M-Bus version 900S, which stems from the inclusion of hard-coded credentials for authentication...

PT-2023-25405 · Unknown · Piigab M-Bus

Name of the Vulnerable Software and Affected Versions: PiiGAB M-Bus affected versions not specified Description: The issue concerns hard-coded credentials used for authentication in PiiGAB M-Bus. No information is provided about the estimated number of potentially affected devices or real-world...

CVE-2023-36623

The root password of the Loxone Miniserver Go Gen.2 before 14.2 is calculated using hard-coded secrets and the MAC address. This allows a local user to calculate the root password and escalate privileges...

CVE-2023-36623

The root password of the Loxone Miniserver Go Gen.2 before 14.2 is calculated using hard-coded secrets and the MAC address. This allows a local user to calculate the root password and escalate privileges...

CVE-2023-36623

The root password of the Loxone Miniserver Go Gen.2 before 14.2 is calculated using hard-coded secrets and the MAC address. This allows a local user to calculate the root password and escalate privileges...

CVE-2023-34473

AMI SPx contains a vulnerability in the BMC where a valid user may cause a use of hard-coded credentials. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity, and availability...

CVE-2023-34473

AMI SPx contains a vulnerability in the BMC where a valid user may cause a use of hard-coded credentials. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity, and availability...

CVE-2023-34338

AMI SPx contains a vulnerability in the BMC where an Attacker may cause a use of hard-coded cryptographic key by a hard-coded certificate. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity, and availability...

CVE-2023-34473

AMI SPx BMC contains a vulnerability (CVE-2023-34473) where a valid user can cause the use of hard-coded credentials. Consequences may include loss of confidentiality, integrity, and availability. Exploitation details are not provided in the sources; no remediation/version fix is specified in the...

CVE-2023-34473 Usage of Hard-coded Credentials

AMI SPx contains a vulnerability in the BMC where a valid user may cause a use of hard-coded credentials. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity, and availability...

CVE-2023-34473 Usage of Hard-coded Credentials

AMI SPx contains a vulnerability in the BMC where a valid user may cause a use of hard-coded credentials. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity, and availability...

CVE-2023-34338

AMI SPx BMC contains a hard-coded cryptographic key used by a hard-coded certificate in the BMC, enabling an attacker to affect confidentiality, integrity, and availability. The CVE-2023-34338 entry cites a HIGH/CRITICAL impact with CVSSv3.1 metrics (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) and notes...

CVE-2023-34338 hard coded cryptographic key

AMI SPx contains a vulnerability in the BMC where an Attacker may cause a use of hard-coded cryptographic key by a hard-coded certificate. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity, and availability...

Authentication Bypass

sphinx is vulnerable to Authentication Bypass. This vulnerability exists in the use of hard-coded credentials, which enables a local attacker to utilize the default password and bypass the login...

PT-2023-24823 · Ami · Ami Spx

Name of the Vulnerable Software and Affected Versions: AMI SPx affected versions not specified Description: The issue is related to a hard-coded cryptographic key used by a hard-coded certificate in the BMC of AMI SPx. This could lead to a loss of confidentiality, integrity, and availability if...

CVE-2023-36623

The root password of the Loxone Miniserver Go Gen.2 before 14.2 is calculated using hard-coded secrets and the MAC address. This allows a local user to calculate the root password and escalate privileges...

CVE-2023-36623

The root password of the Loxone Miniserver Go Gen.2 before 14.2 is calculated using hard-coded secrets and the MAC address. This allows a local user to calculate the root password and escalate privileges...

AMI MegaRAC 信任管理问题漏洞

AMI MegaRAC is a family of service processor products from AMI. Complete out-of-band or unlit remote management of computer systems independent of operating system state or location is available to troubleshoot computers and ensure service continuity. A security vulnerability exists in AMI MegaRA...