Lucene search
+L

2443 matches found

Positive Technologies
Positive Technologies
added 2026/02/06 12:0 a.m.12 views

PT-2026-6779

Name of the Vulnerable Software and Affected Versions PlaciPy version 1.0.0 Description PlaciPy, a placement management system for educational institutions, uses a hard-coded, static default password for all newly created student accounts in version 1.0.0. This allows for mass account takeover,...

9.8CVSS5.4AI score0.00356EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/02/03 3:18 p.m.10 views

CVE-2022-50981

An unauthenticated remote attacker can gain full access on the affected devices as they are shipped without a password by default and setting one is not enforced...

9.8CVSS5.6AI score0.00527EPSS
Exploits0References1
NVD
NVD
added 2026/02/02 3:16 p.m.7 views

CVE-2022-50981

An unauthenticated remote attacker can gain full access on the affected devices as they are shipped without a password by default and setting one is not enforced...

9.8CVSS0.00527EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/02 2:12 p.m.7 views

CVE-2022-50981

An unauthenticated remote attacker can gain full access on the affected devices as they are shipped without a password by default and setting one is not enforced...

9.8CVSS5.6AI score0.00527EPSS
Exploits0References3Affected Software10
Cvelist
Cvelist
added 2026/02/02 2:12 p.m.33 views

CVE-2022-50981 Multiple Innomic VibroLine VLX HD 5.0 and avibia AVLX weak password requirements

An unauthenticated remote attacker can gain full access on the affected devices as they are shipped without a password by default and setting one is not enforced...

9.8CVSS0.00527EPSS
Exploits0References2
EUVD
EUVD
added 2026/02/02 2:12 p.m.15 views

EUVD-2022-55958

An unauthenticated remote attacker can gain full access on the affected devices as they are shipped without a password by default and setting one is not enforced...

9.8CVSS5.6AI score0.00527EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/02 2:12 p.m.4 views

CVE-2022-50981 Multiple Innomic VibroLine VLX HD 5.0 and avibia AVLX weak password requirements

An unauthenticated remote attacker can gain full access on the affected devices as they are shipped without a password by default and setting one is not enforced...

9.8CVSS5.6AI score0.00527EPSS
Exploits0References2
CVE
CVE
added 2026/02/02 2:12 p.m.16 views

CVE-2022-50981

CVE-2022-50981 affects Innomic VibroLine VLX HD 5.0 and avibia AVLX (per CVE records). Affected devices are shipped with no password by default, and password setting is not enforced. This creates an unauthenticated remote access risk where an attacker could gain full control. The Red Hat, NVD, CV...

9.8CVSS5.6AI score0.00527EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.10 views

PT-2026-5668

An unauthenticated remote attacker can gain full access on the affected devices as they are shipped without a password by default and setting one is not enforced...

9.8CVSS5.6AI score0.00527EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/27 9:23 p.m.13 views

CVE-2026-24429

Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.195037 ship with a predefined default password for a built-in authentication account that is not required to be changed during initial configuration. An attacker can leverage these default credentials to gain authenticated acce...

9.8CVSS5.9AI score0.00371EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/27 3:23 p.m.7 views

CVE-2025-59108

By default, the password for the Access Manager's web interface, is set to 'admin'. In the tested version changing the password was not enforced...

9.2CVSS5.9AI score0.00422EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/27 3:23 p.m.8 views

CVE-2025-59096

The default password for the extended admin user mode in the application U9ExosAdmin.exe "Kaba 9300 Administration" is hard-coded in multiple locations as well as documented in the locally stored user documentation...

4.6CVSS5.9AI score0.00155EPSS
Exploits0References1
OSV
OSV
added 2026/01/26 6:16 p.m.7 views

CVE-2026-24429

Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.195037 ship with a predefined default password for a built-in authentication account that is not required to be changed during initial configuration. An attacker can leverage these default credentials to gain authenticated acce...

9.8CVSS5.8AI score0.00371EPSS
Exploits0References2
NVD
NVD
added 2026/01/26 6:16 p.m.8 views

CVE-2026-24429

Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.195037 ship with a predefined default password for a built-in authentication account that is not required to be changed during initial configuration. An attacker can leverage these default credentials to gain authenticated acce...

9.8CVSS0.00371EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/26 5:39 p.m.4 views

CVE-2026-24429 Tenda W30E V2 Hardcoded Default Password for Built-in Account

Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.195037 ship with a predefined default password for a built-in authentication account that is not required to be changed during initial configuration. An attacker can leverage these default credentials to gain authenticated acce...

9.3CVSS5.9AI score0.00371EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/26 5:39 p.m.6 views

EUVD-2026-4678

Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.195037 ship with a predefined default password for a built-in authentication account that is not required to be changed during initial configuration. An attacker can leverage these default credentials to gain authenticated acce...

9.3CVSS5.9AI score0.00371EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/01/26 5:39 p.m.40 views

CVE-2026-24429 Tenda W30E V2 Hardcoded Default Password for Built-in Account

Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.195037 ship with a predefined default password for a built-in authentication account that is not required to be changed during initial configuration. An attacker can leverage these default credentials to gain authenticated acce...

9.3CVSS0.00371EPSS
Exploits0References2
NVD
NVD
added 2026/01/26 10:16 a.m.7 views

CVE-2025-59108

By default, the password for the Access Manager's web interface, is set to 'admin'. In the tested version changing the password was not enforced...

9.2CVSS0.00422EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/26 10:6 a.m.6 views

CVE-2025-59108 Weak Default Passwords in dormakaba access manager

By default, the password for the Access Manager's web interface, is set to 'admin'. In the tested version changing the password was not enforced...

9.2CVSS5.9AI score0.00422EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/26 10:6 a.m.35 views

CVE-2025-59108 Weak Default Passwords in dormakaba access manager

By default, the password for the Access Manager's web interface, is set to 'admin'. In the tested version changing the password was not enforced...

9.2CVSS0.00422EPSS
Exploits0References3
Rows per page
Query Builder