CVE-2019-13543

Medtronic Valleylab Exchange Client version 3.4 and below, Valleylab FT10 Energy Platform VLFT10GEN software version 4.0.0 and below, and Valleylab FX8 Energy Platform VLFX8GEN software version 1.1.0 and below use multiple sets of hard-coded credentials. If discovered, they can be used to read...

CVE-2019-13543 Medtronic Valleylab FT10 and FX8 Use of Hard-coded Credentials

Medtronic Valleylab Exchange Client version 3.4 and below, Valleylab FT10 Energy Platform VLFT10GEN software version 4.0.0 and below, and Valleylab FX8 Energy Platform VLFX8GEN software version 1.1.0 and below use multiple sets of hard-coded credentials. If discovered, they can be used to read...

CVE-2019-13543

CVE-2019-13543 affects Medtronic Valleylab Exchange Client (v3.4 and below) and Valleylab FT10 FX8 energy platforms (VLFT10GEN v4.0.0 and below; VLFX8GEN v1.1.0 and below). The vulnerability is due to multiple sets of hard-coded credentials, which can be leveraged to read files on the device. The...

CVE-2019-16207

Brocade SANnav versions before v2.0 use a hard-coded password, which could allow local authenticated attackers to access a back-end database and gain privileges...

CVE-2019-16207

Brocade SANnav versions before v2.0 use a hard-coded password, which could allow local authenticated attackers to access a back-end database and gain privileges...

CVE-2019-16207

Brocade SANnav versions before v2.0 use a hard-coded password, which could allow local authenticated attackers to access a back-end database and gain privileges...

CVE-2019-16207

CVE-2019-16207 affects Broadcom/ Brocade SANnav prior to version 2.0. The issue is a hard-coded password in SANnav, enabling local authenticated attackers to access the back-end database and escalate privileges. Connected sources confirm the vulnerability exists in SANnav versions before 2.0 and ...

Siemens Sicam Use of Hard-coded Credentials

An issue was discovered in Siemens SICAM PAS before 8.00. A factory account with hard-coded passwords is present in the SICAM PAS installations. Attackers might gain privileged access to the database over Port 2638/TCP. File data ot500290.nasl...

Schneider-electric Modicon Use of Hard-coded Credentials

Schneider Electric SoMachine Basic 1.4 SP1 and Schneider Electric Modicon TM221CE16R 1.3.3.3 devices have a hardcoded-key vulnerability. The Project Protection feature is used to prevent unauthorized users from opening an XML protected project file, by prompting the user for a password. This XML...

Medtronic Valleylab FT10 and FX8

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Medtronic Equipment: Valleylab FT10, Valleylab FX8 Vulnerabilities: Use of Hard-coded Credentials, Reversible One-way Hash, Improper Input Validation 2. RISK EVALUATION Successful exploitation of...

CVE-2015-7276

Technicolor C2000T and C2100T uses hard-coded cryptographic keys...

CVE-2015-7276

Technicolor C2000T and C2100T uses hard-coded cryptographic keys...

CVE-2019-4309

IBM Security Guardium Big Data Intelligence SonarG 4.0 uses hard coded credentials which could allow a local user to obtain highly sensitive information. IBM X-Force ID: 161035...

CVE-2019-4309

IBM Security Guardium Big Data Intelligence SonarG 4.0 uses hard coded credentials which could allow a local user to obtain highly sensitive information. IBM X-Force ID: 161035...

CVE-2019-4309

IBM Security Guardium Big Data Intelligence SonarG 4.0 uses hard coded credentials which could allow a local user to obtain highly sensitive information. IBM X-Force ID: 161035...

CVE-2019-4309

CVE-2019-4309 affects IBM Security Guardium Big Data Intelligence (SonarG) v4.0 and is caused by hard-coded credentials, enabling a local user to obtain highly sensitive information. The vulnerability is documented in IBM advisories and CVSS scores range from 5.5 (3.1) / 5.9 (3.0)MEDIUM, with loc...

CVE-2019-14930

An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. Undocumented hard-coded user passwords for root, ineaadmin, mitsadmin, and maint could allow an attacker to gain unauthorised access to the RTU. Also, the accounts ineaadmin...

CVE-2019-14930

An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. Undocumented hard-coded user passwords for root, ineaadmin, mitsadmin, and maint could allow an attacker to gain unauthorised access to the RTU. Also, the accounts ineaadmin...

CVE-2019-14926

An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. Hard-coded SSH keys allow an attacker to gain unauthorised access or disclose encrypted data on the RTU due to the keys not being regenerated on initial installation or with...

CVE-2019-14930

CVE-2019-14930 affects Mitsubishi Electric Europe B.V. ME-RTU (through 2.02) and INEA ME-RTU (through 3.0). The issue arises from undocumented hard-coded credentials for root, ineaadmin, mitsadmin, and maint, enabling unauthenticated access to the RTU. Additionally, ineaadmin and mitsadmin can es...