CVE-2023-2504

CVE-2023-2504 affects BirdDog devices where hard-coded credentials in firmware allow an attacker to gain root access. The issue is documented across several sources tied to BirdDog cameras/encoders (e.g., STUDIO R3, 4K QUAD, MINI, A300 EYES) and their firmware images; exploitation would grant una...

CVE-2023-2504

Files present on firmware images could allow an attacker to gain unauthorized access as a root user using hard-coded credentials...

CVE-2023-31240

Snap One OvrC Pro versions prior to 7.2 have their own locally running web server accessible both from the local network and remotely. OvrC cloud contains a hidden superuser account accessible through hard-coded credentials...

CVE-2023-31240

Snap One OvrC Pro versions prior to 7.2 have their own locally running web server accessible both from the local network and remotely. OvrC cloud contains a hidden superuser account accessible through hard-coded credentials...

CVE-2023-31240

Snap One OvrC Pro versions prior to 7.2 have their own locally running web server accessible both from the local network and remotely. OvrC cloud contains a hidden superuser account accessible through hard-coded credentials...

Omron NJ/NX-series Machine Automation Controllers Use of Hard-Coded Credentials (CVE-2022-34151)

Use of hard-coded credentials vulnerability exists in Machine automation controller NJ series all models V 1.48 and earlier, Machine automation controller NX7 series all models V1.28 and earlier, Machine automation controller NX1 series all models V1.48 and earlier, Automation software 'Sysmac...

PT-2023-23261 · Snap One · Ovrc Pro

Name of the Vulnerable Software and Affected Versions: Snap One OvrC Pro versions prior to 7.2 Description: The issue concerns a locally running web server in Snap One OvrC Pro that is accessible from both the local network and remotely. Additionally, there is a hidden superuser account in OvrC...

PT-2023-19888 · Birddog · 4K Quad +7

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: Files present on firmware images could allow an attacker to gain unauthorized access as a root user using hard-coded credentials. Recommendations: At th...

MOXA MXsecurity 信任管理问题漏洞

MOXA MXsecurity is a management platform from China-based MOXA. It provides centralized visibility and security management to easily monitor and identify network threats and prevent security misconfigurations to create a robust threat defense. A security vulnerability exists in MOXA MXsecurity...

CVE-2023-2799

A vulnerability, which was classified as problematic, has been found in cnoa OA up to 5.1.1.5. Affected by this issue is some unknown functionality of the file /index.php?app=main&func=passport&action=login. The manipulation leads to use of hard-coded password. The exploit has been disclosed to t...

CVE-2023-2799

A vulnerability, which was classified as problematic, has been found in cnoa OA up to 5.1.1.5. Affected by this issue is some unknown functionality of the file /index.php?app=main&func=passport&action=login. The manipulation leads to use of hard-coded password. The exploit has been disclosed to t...

CVE-2023-2799

CVE-2023-2799 affects cnoa OA up to v5.1.1.5. The vulnerability exists in an unknown function of the file /index.php?app=main&func=passport&action=login, where a hard-coded password is used. Public exploitation has been disclosed. Impact is described as enabling access with a hard-coded credentia...

CVE-2023-2799 cnoa OA hard-coded password

A vulnerability, which was classified as problematic, has been found in cnoa OA up to 5.1.1.5. Affected by this issue is some unknown functionality of the file /index.php?app=main&func=passport&action=login. The manipulation leads to use of hard-coded password. The exploit has been disclosed to t...

CVE-2023-2799 cnoa OA hard-coded password

A vulnerability, which was classified as problematic, has been found in cnoa OA up to 5.1.1.5. Affected by this issue is some unknown functionality of the file /index.php?app=main&func=passport&action=login. The manipulation leads to use of hard-coded password. The exploit has been disclosed to t...

PT-2023-21470 · Cnoa Oa · Cnoa Oa

Name of the Vulnerable Software and Affected Versions: cnoa OA versions up to 5.1.1.5 Description: A problematic issue has been found in the software, affecting some unknown functionality of the file "/index.php?app=main&func=passport&action=login". The manipulation leads to the use of a hard-cod...

cnoa OA 安全漏洞

cona cnoa OA is a collaborative office software from Hipzl cona. A security vulnerability exists in cnoa OA prior to version 5.1.1.5, which originates from the presence of an unknown function in /index.php?app=main&func=passport&action=loginf in the Telnet service component, resulting in the use ...

Schneider Electric APC Easy UPS Online SNMPDBManager Use of Hard-Coded Credentials Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Schneider Electric APC Easy UPS Online. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists with...

PT-2023-2872 · D Link · D-Link D-View

Name of the Vulnerable Software and Affected Versions: D-Link D-View affected versions not specified Description: This issue allows remote attackers to bypass authentication on affected installations. The specific flaw exists within the TokenUtils class and results from a hard-coded cryptographic...

Snap One OvrC Pro 信任管理问题漏洞

Snap One OvrC is a free cloud-based remote management and monitoring platform from US-based Snap One. A trust management issue vulnerability exists in Snap One OvrC Pro prior to version 7.2 that stems from the use of hard-coded credentials, which can be exploited by an attacker to gain access to ...

多款BirdDog产品信任管理问题漏洞

BirdDog STUDIO R3 and others are products of BirdDog Inc.BirdDog STUDIO R3 is a camera.BirdDog 4K QUAD is a camera.BirdDog MINI is a video encoder. The BirdDog STUDIO R3, 4K QUAD, MINI, and A300 EYES are vulnerable to a trust management issue that stems from the use of hard-coded credentials. An...