8175 matches found
ROZCOM client 信任管理问题漏洞
ROZCOM client is an intercom system from ROZCOM. A security vulnerability exists in ROZCOM client that stems from the use of hard-coded credentials...
CVE-2023-31184 ROZCOM client
ROZCOM client CWE-798: Use of Hard-coded Credentials...
CVE-2023-31184
CVE-2023-31184 – ROZCOM client is connected to reports describing hard-coded credentials in Rozcom intercoms. The THN article links this to broader vulnerabilities in QuickBlox and notes that Rozcom’s implementation could enable impersonation and full account takeover. Reported impact includes do...
CVE-2023-31184
ROZCOM client CWE-798: Use of Hard-coded Credentials...
D-Link D-View Use of Hard-coded Cryptographic Key Authentication Bypass Vulnerability
This vulnerability allows remote attackers to bypass authentication on affected installations of D-Link D-View. Authentication is not required to exploit this vulnerability. The specific flaw exists within the TokenUtils class. The issue results from a hard-coded cryptographic key. An attacker ca...
The Rising Threat of Secrets Sprawl and the Need for Action
The most precious asset in today's information age is the secret safeguarded under lock and key. Regrettably, maintaining secrets has become increasingly challenging, as highlighted by the 2023 State of Secrets Sprawl report, the largest analysis of public GitHub activity. The report shows a67%...
CVE-2023-27512
Use of hard-coded credentials exists in SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10, and SV-CPT-MC310F versions prior to Ver.8.10, which may allow a remote authenticated attacker to login the affected product with an administrative privilege and perform an unintended operation...
CVE-2023-27921
JINS MEME CORE Firmware version 2.2.0 and earlier uses a hard-coded cryptographic key, which may lead to data acquired by a sensor of the affected product being decrypted by a network-adjacent attacker...
CVE-2023-27512
Use of hard-coded credentials exists in SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10, and SV-CPT-MC310F versions prior to Ver.8.10, which may allow a remote authenticated attacker to login the affected product with an administrative privilege and perform an unintended operation...
Hardcoded credentials
Use of hard-coded credentials exists in SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10, and SV-CPT-MC310F versions prior to Ver.8.10, which may allow a remote authenticated attacker to login the affected product with an administrative privilege and perform an unintended operation...
CVE-2023-27512
CVE-2023-27512 affects Contec SolarView Compact SV-CPT-MC310 (pre-8.10) and SV-CPT-MC310F (pre-8.10). The root cause is use of hard-coded credentials, enabling a remote authenticated attacker to log in with administrative privileges and perform unintended operations. The vulnerability is addresse...
PT-2023-21183 · Unknown · Solarview Compact Sv-Cpt-Mc310
Name of the Vulnerable Software and Affected Versions: SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10 SolarView Compact SV-CPT-MC310F versions prior to Ver.8.10 Description: The issue is related to the use of hard-coded credentials, which may allow a remote authenticated attacker to lo...
PT-2023-21421 · Jins · Jins Meme Core Firmware
Name of the Vulnerable Software and Affected Versions: JINS MEME CORE Firmware versions 2.2.0 and earlier Description: The issue is related to a hard-coded cryptographic key used in the firmware, which may allow a network-adjacent attacker to decrypt data acquired by a sensor of the affected...
Contec SolarView Compact 信任管理问题漏洞
Contec SolarView Compact is an application system from Contec Japan. It provides measurement system for photovoltaic power generation. A security vulnerability exists in the Contec SolarView Compact SV-CPT-MC310 Ver.8.10 prior and SV-CPT-MC310F Ver.8.10 prior, which stems from the presence of...
CVE-2023-27921
JINS MEME CORE Firmware version 2.2.0 and earlier uses a hard-coded cryptographic key, which may lead to data acquired by a sensor of the affected product being decrypted by a network-adjacent attacker...
CVE-2023-27512
Use of hard-coded credentials exists in SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10, and SV-CPT-MC310F versions prior to Ver.8.10, which may allow a remote authenticated attacker to login the affected product with an administrative privilege and perform an unintended operation...
CVE-2023-27512
Use of hard-coded credentials exists in SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10, and SV-CPT-MC310F versions prior to Ver.8.10, which may allow a remote authenticated attacker to login the affected product with an administrative privilege and perform an unintended operation...
CVE-2023-2504
Files present on firmware images could allow an attacker to gain unauthorized access as a root user using hard-coded credentials...
CVE-2023-2504
Files present on firmware images could allow an attacker to gain unauthorized access as a root user using hard-coded credentials...
Hardcoded credentials
Files present on firmware images could allow an attacker to gain unauthorized access as a root user using hard-coded credentials...