Hardcoded credentials

The use of a hard-coded cryptographic key significantly increases the possibility encrypted data may be recovered from the Patient Information Center iX PIC iX Versions B.02, C.02, and C.03...

CVE-2021-43552 Philips Patient Information Center iX (PIC iX) and Efficia CM Series Use of Hard-coded Cryptographic Key

The use of a hard-coded cryptographic key significantly increases the possibility encrypted data may be recovered from the Patient Information Center iX PIC iX Versions B.02, C.02, and C.03...

CVE-2021-32993

The CVE-2021-32993 issue affects Philips IntelliBridge EC 40 Hub (C.00.04 and prior) and EC 80 Hub (C.00.04 and prior). The vulnerability arises from hard-coded credentials used for inbound authentication, outbound communication to external components, or encryption of internal data (CWE-798). Re...

CVE-2021-32993 Philips IntelliBridge EC 40 and EC 80 Hub Use of Hard-coded Credentials

IntelliBridge EC 40 and 60 Hub C.00.04 and prior contains hard-coded credentials, such as a password or a cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data...

CVE-2021-35232

CVE-2021-35232 affects SolarWinds Web Help Desk versions up to and including 12.7.6. It arises from hard-coded credentials that permit a local attacker with access to the Web Help Desk host to execute arbitrary HQL queries against the database, enabling theft of user password hashes or insertion ...

CVE-2021-35232 Hard credentials discovered in SolarWinds Web Help Desk which allows to execute Arbitrary Hibernate Queries

Hard coded credentials discovered in SolarWinds Web Help Desk product. Through these credentials, the attacker with local access to the Web Help Desk host machine allows to execute arbitrary HQL queries against the database and leverage the vulnerability to steal the password hashes of the users ...

PT-2021-20854 · Solarwinds · Solarwinds Web Help Desk

Name of the Vulnerable Software and Affected Versions: SolarWinds Web Help Desk affected versions not specified Description: A security issue has been discovered in the SolarWinds Web Help Desk product, where hard-coded credentials allow an attacker with local access to the host machine to execut...

Solarwinds Web Help Desk 信任管理问题漏洞

Solarwinds Web Help Desk is a suite of help desk and asset management software from Solarwinds USA. The software supports centralized knowledge base, IT asset management, project and task management, and other features. SolarWinds Web Help Desk suffers from a trust management issue vulnerability...

Netgear NETGEAR 信任管理问题漏洞

Netgear NETGEAR is a router from the American company Netgear. A hardware device that connects two or more networks and acts as a gateway between networks. NETGEAR devices have a security vulnerability that stems from the fact that certain NETGEAR devices are subject to hard-coded passwords. This...

Netgear NETGEAR 信任管理问题漏洞

Netgear NETGEAR is a router from the American company Netgear. A hardware device that connects two or more networks and acts as a gateway between networks. NETGEAR devices have a security vulnerability that stems from the fact that certain NETGEAR devices are subject to hard-coded passwords. This...

Netgear NETGEAR 信任管理问题漏洞

The NETGEAR xr1000 is a router from Netgear, Inc. A hardware device that connects two or more networks and acts as a gateway between networks, the NETGEAR XR1000 device suffers from a security vulnerability that stems from the fact that NETGEAR XR1000 devices prior to 1.0.0.58 are subject to...

CVE-2021-44207

Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials...

CVE-2021-44207

Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials...

CVE-2021-44207

CVE-2021-44207 affects Acclaim USAHERDS (version 7.4.0.1 and earlier) due to hard-coded credentials, enabling potential unauthorized access and remote code execution as described by multiple sources. Public docs confirm the issue center is use of hard-coded credentials in USAHERDS, with CVSS metr...

CVE-2021-44207

Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials...

CVE-2021-44207

Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials...

CVE-2021-43587

Dell PowerPath Management Appliance, versions 3.2, 3.1, 3.0 P01, 3.0, and 2.6, use hard-coded cryptographic key. A local high-privileged malicious user may potentially exploit this vulnerability to gain access to secrets and elevate to gain higher privileges...

PT-2021-24065

Name of the Vulnerable Software and Affected Versions: Acclaim USAHERDS versions 7.4.0.1 and earlier Description: The issue concerns the use of hard-coded credentials in Acclaim USAHERDS, allowing attackers to bypass authentication and gain unauthorized access to sensitive systems and data. This...

Acclaim USAHERDS 信任管理问题漏洞

Acclaim Systems Acclaim Usaherds is an Animal Health Emergency Reporting Diagnostic System from Acclaim Systems USA. A security vulnerability exists in Acclaim USAHERDS version 7.4.0.1 and prior versions that stems from the presence of hard-coded credentials in the program...

Fresenius Kabi Agilia Connect Infusion System (Update A)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Fresenius Kabi Equipment: Agilia Connect Infusion System Vulnerabilities: Uncontrolled Resource Consumption, Use of a Broken or Risky Cryptographic Algorithm, Insufficiently Protected Credentials,...