CVE-2023-2645

A vulnerability, which was classified as critical, was found in USR USR-G806 1.0.41. Affected is an unknown function of the component Web Management Page. The manipulation of the argument username/password with the input root leads to use of hard-coded password. It is possible to launch the attac...

CVE-2023-2645

A vulnerability, which was classified as critical, was found in USR USR-G806 1.0.41. Affected is an unknown function of the component Web Management Page. The manipulation of the argument username/password with the input root leads to use of hard-coded password. It is possible to launch the attac...

Hardcoded credentials

A vulnerability, which was classified as critical, was found in USR USR-G806 1.0.41. Affected is an unknown function of the component Web Management Page. The manipulation of the argument username/password with the input root leads to use of hard-coded password. It is possible to launch the attac...

CVE-2023-2645

The CVE-2023-2645 entry affects USR-G806 (firmware 1.0.41) and is tied to the Web Management Page. The vulnerability arises from manipulating the username/password arguments with the input root, which leads to the use of a hard-coded password. This enables a remote attack as described in multiple...

CVE-2023-2645 USR USR-G806 Web Management Page hard-coded password

A vulnerability, which was classified as critical, was found in USR USR-G806 1.0.41. Affected is an unknown function of the component Web Management Page. The manipulation of the argument username/password with the input root leads to use of hard-coded password. It is possible to launch the attac...

USR IOT 4G LTE Industrial Cellular VPN Router 安全漏洞

Jinan USR IOT Technology USR IOT 4G LTE Industrial Cellular VPN Router is an industrial-grade 4G wireless LTE router from Jinan USR IOT Technology China. A security vulnerability exists in the USR USR-G806 version 1.0.41, which stems from a problem with the component Web Management Page, where...

BirdDog Cameras & Encoders

1. EXECUTIVE SUMMARY CVSS v3 8.4 ATTENTION: Exploitable remotely/low attack complexity Vendor: BirdDog Equipment: STUDIO R3, 4K QUAD, MINI, A300 EYES Vulnerabilities: Cross-Site Request Forgery, Use of Hard-Coded Credentials 2. RISK EVALUATION Successful exploitation of these vulnerabilities...

CVE-2023-30351

Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 was discovered to contain a hard-coded default password for root which is stored using weak encryption. This vulnerability allows attackers to connect to the TELNET service or UART by using the exposed credentials...

CVE-2023-30352

Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 was discovered to contain a hard-coded default password for the RTSP feed...

CVE-2023-30352

Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 was discovered to contain a hard-coded default password for the RTSP feed...

Hardcoded credentials

Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 was discovered to contain a hard-coded default password for root which is stored using weak encryption. This vulnerability allows attackers to connect to the TELNET service or UART by using the exposed credentials...

Tenda CP3 加密问题漏洞

Tenda CP3 is a smart camera from Tenda China. A security vulnerability exists in the Tenda CP3 version V11.10.00.2211041355, which stems from the device containing a hard-coded default root password that is stored using weak encryption, and can be exploited by an attacker to connect to a TELNET...

CVE-2023-30351

CVE-2023-30351 affects Shenzen Tenda Technology IP Camera CP3, version 11.10.00.2211041355. The issue is a hard-coded default root password stored with weak encryption, enabling an attacker to authenticate via TELNET (or UART) using exposed credentials. The CVSS v3.1 base score is 7.5 (HIGH) with...

Siemens SIMATIC Cloud Connect 7 Using Hardcoded Passwords Vulnerability

SIMATIC Cloud Connect 7 is an IoT gateway for connecting programmable logic controllers to cloud services and allows field devices with OPC UA server interfaces to be connected as OPC UA clients. Siemens SIMATIC Cloud Connect 7 suffers from a use of hard-coded password vulnerability that could be...

CVE-2023-30352

Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 was discovered to contain a hard-coded default password for the RTSP feed...

CVE-2023-30354

Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 does not defend against physical access to U-Boot via the UART: the Wi-Fi password is shown, and the hardcoded boot password can be inserted for console access...

PT-2023-22647 · Shenzen Tenda Technology · Tenda Ip Camera Cp3

Name of the Vulnerable Software and Affected Versions: Shenzen Tenda Technology IP Camera CP3 version 11.10.00.2211041355 Description: The issue is related to a hard-coded default password for the root user, which is stored using weak encryption. This allows attackers to connect to the TELNET...

CVE-2023-29103

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 All versions = V2.0 = V2.0 V2.1, SIMATIC Cloud Connect 7 CC716 All versions V2.1. The affected device uses a hard-coded password to protect the diagnostic files. This could allow an authenticated attacker to access protected dat...

CVE-2023-29103

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 All versions = V2.0 = V2.0 V2.1, SIMATIC Cloud Connect 7 CC716 All versions V2.1. The affected device uses a hard-coded password to protect the diagnostic files. This could allow an authenticated attacker to access protected dat...

CVE-2023-29103

The CVE-2023-29103 entry concerns Siemens SIMATIC Cloud Connect 7 CC712/CC716 with versions 2.0–2.1, where a hard-coded password protects diagnostic files, enabling an authenticated attacker to access protected data. Red Hat and NVD entries corroborate the affected products and vulnerability clas...