CVE-2021-20442

IBM Security Verify Bridge contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 196618...

vxhunter

This is an offensive tool for embedded device analysis. It is a toolset for VxWorks based embedded device analyses, specifically designed for analyzing VxWorks firmware. The toolset includes plugins written in Python for analyzing firmware loading address, fixing function names with symbol tables...

IBM Security Verify Bridge 信任管理问题漏洞

IBM Security Verify Bridge is an IBM application component from International Business Machines IBM, Inc. provides IBM Cloud access to user attributes and authentication that are controlled by the client's local LDAP or Active Directory. A security vulnerability exists in IBM Security Verify Brid...

MB connect line mbCONNECT24, mymbCONNECT24

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: MB connect line Equipment: mymbCONNECT24, mbCONNECT24 Vulnerabilities: Improper Privilege Management, Server-side Request Forgery SSRF, Cross-site Scripting, Uncontrolled Resource Consumption, Open...

Advantech BB-ESWGP506-2SFP-T Hardcoded Vulnerability

The Advantech BB-ESWGP506-2SFP-T is an application from CHAAdvantech that provides an intelligent electric bus management system. A hard-coded vulnerability in the Advantech BB-ESWGP506-2SFP-T allows remote attackers to exploit the vulnerability to submit a special request, gain unauthorized acce...

Helpcom Trust Management Issues Vulnerabilities

Helpcom is an application from the Korean company Helpcom. It provides remote control services. A security vulnerability exists in versions prior to Helpcom v10.0 that stems from storing hard-coded encryption keys. No detailed vulnerability details are provided at this time...

CVE-2021-22667

BB-ESWGP506-2SFP-T versions 1.01.09 and prior is vulnerable due to the use of hard-coded credentials, which may allow an attacker to gain unauthorized access and permit the execution of arbitrary code on the BB-ESWGP506-2SFP-T versions 1.01.01 and prior...

CVE-2021-22667

BB-ESWGP506-2SFP-T versions 1.01.09 and prior is vulnerable due to the use of hard-coded credentials, which may allow an attacker to gain unauthorized access and permit the execution of arbitrary code on the BB-ESWGP506-2SFP-T versions 1.01.01 and prior...

CVE-2021-22667

CVE-2021-22667 affects Advantech BB-ESWGP506-2SFP-T industrial switches (versions 1.01.09 and prior). The root cause is hard-coded credentials in the device, enabling unauthorized access and arbitrary code execution. ZDI specifies exploitation via the telnet service (port 23) with a hard-coded ad...

CVE-2021-22667

BB-ESWGP506-2SFP-T versions 1.01.09 and prior is vulnerable due to the use of hard-coded credentials, which may allow an attacker to gain unauthorized access and permit the execution of arbitrary code on the BB-ESWGP506-2SFP-T versions 1.01.01 and prior...

FiberHome HG6245D devices Trust Management Issues Vulnerability

FiberHome HG6245D devices is a router from FiberHome, China. It provides network connectivity. A trust management issue vulnerability exists in the FiberHome HG6245D devices, which can be exploited by an attacker to attack vulnerable components using default passwords or hard-coded passwords,...

FiberHome AN5506-04-FA Trust Management Issues Vulnerability

FiberHome AN5506-04-FA is a router from China Fiberhome.Fiber is an open source web framework written in Go. A trust management issue vulnerability exists in FiberHome AN5506-04-FA, which can be exploited by an attacker to attack affected components using default passwords or hard-coded passwords...

Helpcom 信任管理问题漏洞

Helpcom is an application from the Korean company Helpcom. It provides remote control services. A security vulnerability exists in versions prior to Helpcom v10.0 that stems from storing hard-coded encryption keys. No detailed vulnerability details are provided at this time...

FiberHome HG6245D devices trust management issue vulnerability (CNVD-2021-18381)

FiberHome HG6245D devices is a router from FiberHome, China. It provides network connectivity. A trust management issue vulnerability exists in the FiberHome HG6245D devices, which can be exploited by an attacker to attack vulnerable components using default passwords or hard-coded passwords,...

Fiber Trust Management Issues Vulnerability (CNVD-2021-13655)

Fiber is an open source web framework written in the Go language . A trust management issue vulnerability exists in FiberHome HG6245D, which arises from the lack of an effective trust management mechanism in a network system or product, and can be exploited by an attacker to attack affected...

Fiber Trust Management Issues Vulnerabilities

Fiber is an open source web framework written in the Go language . A trust management issue vulnerability exists in FiberHome HG6245D, which can be exploited by attackers to attack affected components using default passwords or hard-coded passwords and hard-coded certificates...

FiberHome HG6245D devices trust management issue vulnerability (CNVD-2021-18380)

FiberHome HG6245D devices is a router from FiberHome, China. It provides network connectivity. A trust management issue vulnerability exists in the FiberHome HG6245D devices, which can be exploited by an attacker to attack vulnerable components using default passwords or hard-coded passwords,...

Advantech BB-ESWGP506-2SFP-T 信任管理问题漏洞

The Advantech BB-ESWGP506-2SFP-T is an application from CHAAdvantech that provides an intelligent electric bus management system. A hard-coded vulnerability in the Advantech BB-ESWGP506-2SFP-T allows remote attackers to exploit the vulnerability to submit a special request, gain unauthorized acce...

Advantech BB-ESWGP506-2SFP-T

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Advantech Equipment: BB-ESWGP506-2SFP-T Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to gain unauthorized...

FiberHome HG6245D Hardcoded Credential Vulnerability (CNVD-2021-11339)

The HG6245D is an FTTH ONT router from FiberHome. A hard-coded credentials vulnerability exists in the FiberHome HG6245D. The vulnerability stems from the web daemon containing hard-coded admin/G0R2U1P2ag credentials against an ISP. No details of the vulnerability are provided at this time...