CVE-2021-0248 NFX Series: Hard-coded credentials allow an attacker to take control of any instance through administrative interfaces.

This issue is not applicable to NFX NextGen Software. On NFX Series devices the use of Hard-coded Credentials in Juniper Networks Junos OS allows an attacker to take over any instance of an NFX deployment. This issue is only exploitable through administrative interfaces. This issue affects: Junip...

CVE-2021-0248

CVE-2021-0248 affects Juniper Networks Junos OS on NFX Series devices where a hard-coded credential flaw allows an attacker to take over any instance of an NFX deployment . The vulnerability is exploitable only via administrative interfaces . Affected scope is Junos OS versions prior to 19.1R1 on...

CVE-2021-0245 Junos OS: Junos Fusion: Hard-coded credentials on satellite devices allows a locally authenticated attacker to elevate their privileges.

A Use of Hard-coded Credentials vulnerability in Juniper Networks Junos OS on Junos Fusion satellite devices allows an attacker who is local to the device to elevate their privileges and take control of the device. This issue affects: Juniper Networks Junos OS Junos Fusion Satellite Devices. 16.1...

PT-2021-12974 · Juniper Networks · Junos

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS on cSRX Series versions prior to 20.2R3 Juniper Networks Junos OS on cSRX Series version 20.3 prior to 20.3R2 Juniper Networks Junos OS on cSRX Series version 20.4 prior to 20.4R2 Description: The issue in Juniper...

Security Bulletin: Resilient OnPrem is affected by the use of hard-code credentials in its internal email server

Summary Security Bulletin: Resilient OnPrem is affected by the use of hard-code credentials in its internal email server Vulnerability Details Summary Resilient OnPrem has removed the use of hard-coded credentials. Vulnerability Details CVEID: CVE-2019-4534 DESCRIPTION: IBM Resilient OnPrem...

SUSE SLES12 Security Update : qemu (SUSE-SU-2021:1241-1)

This update for qemu fixes the following issues : Fix OOB access in sm501 device emulation CVE-2020-12829, bsc1172385 Fix OOB access possibility in MegaRAID SAS 8708EM2 emulation CVE-2020-13362, bsc1172383 Fix use-after-free in usb xhci packet handling CVE-2020-25723, bsc1178934 Fix use-after-fre...

SUSE SLED15 / SLES15 Security Update : qemu (SUSE-SU-2021:1243-1)

This update for qemu fixes the following issues : CVE-2020-12829: Fix OOB access in sm501 device emulation bsc1172385 CVE-2020-25723: Fix use-after-free in usb xhci packet handling bsc1178934 CVE-2020-25084: Fix use-after-free in usb ehci packet handling bsc1176673 CVE-2020-25625: Fix infinite lo...

Juniper Junos OS Vulnerability (JSA11138)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA11138 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. C Tenable Network Security, Inc...

CVE-2019-10881

Xerox AltaLink B8045/B8055/B8065/B8075/B8090, AltaLink C8030/C8035/C8045/C8055/C8070 with software releases before 103.xxx.030.32000 includes two accounts with weak hard-coded passwords which can be exploited and allow unauthorized access which cannot be disabled...

Xerox AltaLink 信任管理问题漏洞

Xerox AltaLink is a hardware device from the American Xerox Xerox company. It provides a print-copy function. A security vulnerability exists in Xerox AltaLink versions prior to 103.xxx.030.32000, which stems from including two accounts with weakly hard-coded passwords that can be exploited and...

CVE-2020-14099

On Xiaomi router AX1800 rom version 1.0.336 and RM1800 root version 1.0.26, the encryption scheme for a user's backup files uses hard-coded keys, which can expose sensitive information such as a user's password...

CVE-2020-14099

On Xiaomi router AX1800 rom version 1.0.336 and RM1800 root version 1.0.26, the encryption scheme for a user's backup files uses hard-coded keys, which can expose sensitive information such as a user's password...

Xiaomi router AX1800 信任管理问题漏洞

Xiaomi router AX1800 is a router from China-based Xiaomi. A security vulnerability exists in Xiaomi router AX1800 rom version prior to 1.0.336 and RM1800 root version prior to 1.0.26, which stems from the encryption scheme of the user's backup file using a hard-coded key...

CVE-2021-26579

A security vulnerability in HPE Unified Data Management UDM could allow the local disclosure of privileged information CWE-321: Use of Hard-coded Cryptographic Key in a product. HPE has provided updates to versions 1.2009.0 and 1.2101.0 of HPE Unified Data Management UDM. Version 1.2103.0 of HPE...

CVE-2021-26579

A security vulnerability in HPE Unified Data Management UDM could allow the local disclosure of privileged information CWE-321: Use of Hard-coded Cryptographic Key in a product. HPE has provided updates to versions 1.2009.0 and 1.2101.0 of HPE Unified Data Management UDM. Version 1.2103.0 of HPE...

Hardcoded credentials

A security vulnerability in HPE Unified Data Management UDM could allow the local disclosure of privileged information CWE-321: Use of Hard-coded Cryptographic Key in a product. HPE has provided updates to versions 1.2009.0 and 1.2101.0 of HPE Unified Data Management UDM. Version 1.2103.0 of HPE...

CVE-2021-26579

CVE-2021-26579 describes a vulnerability in HPE Unified Data Management (UDM) where a hard-coded cryptographic key in the product can lead to local disclosure of privileged information (CWE-321). The issue is addressed by HPE in UDM versions, with updates to 1.2009.0 and 1.2101.0, and a cleanup i...

CVE-2021-26579

A security vulnerability in HPE Unified Data Management UDM could allow the local disclosure of privileged information CWE-321: Use of Hard-coded Cryptographic Key in a product. HPE has provided updates to versions 1.2009.0 and 1.2101.0 of HPE Unified Data Management UDM. Version 1.2103.0 of HPE...

HPE Unified Data Management 信任管理问题漏洞

HPE Unified Data Management is a software application from HPE America. It provides a management function. A security vulnerability exists in HPE Unified Data Management that originates from a hard-coded encryption key that allows local disclosure of privileged information...

MobileIron agents 信任管理问题漏洞

MobileIron agents is a software application from MobileIron, Inc. It is used for MobileIron agents. A trust management issue vulnerability exists in versions of MobileIron agents prior to 2021-03-22, which stems from the inclusion of a hard-coded API key used to communicate with the MobileIron Sa...