Lucene search
K

93 matches found

Tenable Nessus
Tenable Nessus
added 2022/07/21 12:0 a.m.111 views

Atlassian Confluence < 7.4.17 / 7.13.x < 7.13.6 / < 7.14.3 / 7.15.x < 7.15.2 / 7.16.x < 7.16.4 / 7.17.x < 7.17.2 (CONFSERVER-79483)

The version of Atlassian Confluence installed on the remote host is prior to 7.4.17 / 7.13.x 7.13.6 / 7.14.x 7.14.3 / 7.15.x 7.15.2 / 7.16.x 7.16.4 / 7.17.x 7.17.2. It is potentially affected by a hard-coded credential vulnerability if the 'Questions for Confluence' app is installed. The Atlassia...

9.8CVSS8.7AI score0.9817EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/06/13 5:15 a.m.4 views

CVE-2022-29525

Rakuten Casa version APFV141 or APFV200 uses a hard-coded credential which may allow a remote unauthenticated attacker to log in with the root privilege and perform an arbitrary operation...

9.8CVSS7.3AI score0.01425EPSS
Exploits0References3
OSV
OSV
added 2022/06/13 5:15 a.m.6 views

CVE-2022-29525

Rakuten Casa version APFV141 or APFV200 uses a hard-coded credential which may allow a remote unauthenticated attacker to log in with the root privilege and perform an arbitrary operation...

9.8CVSS7.3AI score0.01425EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/06/13 4:50 a.m.21 views

CVE-2022-29525

Rakuten Casa version APFV141 or APFV200 uses a hard-coded credential which may allow a remote unauthenticated attacker to log in with the root privilege and perform an arbitrary operation...

9.8AI score0.01425EPSS
Exploits0References2
CVE
CVE
added 2022/06/13 4:50 a.m.56 views

CVE-2022-29525

Rakuten Casa (AP_F_V1_4_1 and AP_F_V2_0_0) contains a hard-coded credential vulnerability that can allow a remote, unauthenticated attacker to log in with root privileges and perform arbitrary operations. Affected component is the device firmware/application code; root login could enable full sys...

9.8CVSS9.5AI score0.01425EPSS
Exploits0References2Affected Software1
RubySec
RubySec
added 2022/05/17 12:0 a.m.32 views

Katello uses hard coded credential

The installation script in Katello 1.0 and earlier does not properly generate the Application.config.secrettoken value, which causes each default installation to have the same secret token, and allows remote attackers to authenticate to the CloudForms System Engine web interface as an arbitrary...

9.8CVSS7.2AI score0.03002EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/05/10 12:0 a.m.6 views

InHand Networks InRouter302 信任管理问题漏洞

InHand Networks InRouter Series is a series of routers from InHand Networks, Inc. InHand Networks InRouter302 version 3.5.37 contains a hard-coded credential vulnerability that could be exploited by an attacker to send specially crafted network requests that could lead to the execution of...

8.8CVSS5.9AI score0.0107EPSS
Exploits1References5
OSV
OSV
added 2022/04/07 7:15 p.m.4 views

CVE-2022-26671

Taiwan Secom Dr.ID Access Control system’s login page has a hard-coded credential in the source code. An unauthenticated remote attacker can use the hard-coded credential to acquire partial system information and modify system setting to cause partial disrupt of service...

7.3CVSS5.8AI score
Exploits0References1
CVE
CVE
added 2022/04/07 6:22 p.m.81 views

CVE-2022-26671

CVE-2022-26671 affects Taiwan Secom Dr.ID Access Control system’s login page, where a hard-coded credential in the source code allows an unauthenticated remote attacker to obtain partial system information and modify system settings, causing partial service disruption. The available connected doc...

7.5CVSS7AI score0.00938EPSS
Exploits0References1Affected Software2
CNNVD
CNNVD
added 2022/04/07 12:0 a.m.7 views

Taiwan Secom Dr.ID Access control 信任管理问题漏洞

Taiwan Secom Dr.ID Access control is an access control system from Taiwan Secom Corporation in Taiwan, China. A security vulnerability exists in the Taiwan Secom Dr.ID Access control system due to a hard-coded credential in the source code of the login page. An unauthenticated remote attacker cou...

7.5CVSS7.5AI score0.00938EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/03/31 2:30 a.m.2 views

CVE-2022-26671

Taiwan Secom Dr.ID Access Control system’s login page has a hard-coded credential in the source code. An unauthenticated remote attacker can use the hard-coded credential to acquire partial system information and modify system setting to cause partial disrupt of service...

7.5CVSS7.1AI score0.00938EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/03/21 12:0 a.m.5 views

GARO Wallbox GLB/GTB/GTC 信任管理问题漏洞

The GARO Wallbox GLB/GTB/GTC is an electric vehicle charger from the Swedish company GARO. A security vulnerability exists in the GARO Wallbox GLB/GTB/GTC that originates from the presence of a hard-coded credential in /etc/tomcat8/tomcat-user.xml. An attacker can use this vulnerability to gain...

9.8CVSS8.4AI score0.01082EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2021/11/03 12:0 a.m.3 views

VulnCheck KEV: CVE-2020-29583

Zyxel firewalls ATP, USG, VM and AP Controllers NXC2500 and NXC5500 contain a use of hard-coded credentials vulnerability in an undocumented account "zyfwp" with an unchangeable password...

10CVSS7.5AI score0.90049EPSS
Exploits2References1
OSV
OSV
added 2021/07/22 7:15 p.m.3 views

CVE-2021-31579

Akkadian Provisioning Manager Engine PME ships with a hard-coded credential, akkadianuser:haakkadianpassword. This issue was resolved in Akkadian OVA appliance version 3.0 and later, Akkadian Provisioning Manager 5.0.2 and later, and Akkadian Appliance Manager 3.3.0.314-4a349e0 and later...

9.8CVSS5.8AI score0.01283EPSS
Exploits1References1
NVD
NVD
added 2021/07/22 7:15 p.m.24 views

CVE-2021-31579

Akkadian Provisioning Manager Engine PME ships with a hard-coded credential, akkadianuser:haakkadianpassword. This issue was resolved in Akkadian OVA appliance version 3.0 and later, Akkadian Provisioning Manager 5.0.2 and later, and Akkadian Appliance Manager 3.3.0.314-4a349e0 and later...

9.8CVSS0.01283EPSS
Exploits1References1
Prion
Prion
added 2021/07/22 7:15 p.m.22 views

Hardcoded credentials

Akkadian Provisioning Manager Engine PME ships with a hard-coded credential, akkadianuser:haakkadianpassword. This issue was resolved in Akkadian OVA appliance version 3.0 and later, Akkadian Provisioning Manager 5.0.2 and later, and Akkadian Appliance Manager 3.3.0.314-4a349e0 and later...

5CVSS9.2AI score0.01283EPSS
Exploits1References1Affected Software2
CVE
CVE
added 2021/07/22 6:27 p.m.61 views

CVE-2021-31579

CVE-2021-31579 affects Akkadian Provisioning Manager Engine (PME) where a hard-coded credential (akkadianuser:haakkadianpassword) exists. Exploitation can enable root-level shell access when combined with other issues (CVE-2021-31580/81) and, in some contexts, expose sensitive data (CVE-2021-3158...

9.8CVSS8.9AI score0.01283EPSS
Exploits1References1Affected Software2
NVD
NVD
added 2020/08/25 2:15 p.m.25 views

CVE-2020-14510

GateManager versions prior to 9.2c, The affected product contains a hard-coded credential for telnet, allowing an unprivileged attacker to execute commands as root...

10CVSS9.7AI score0.02487EPSS
Exploits0References1
OSV
OSV
added 2020/08/25 2:15 p.m.5 views

CVE-2020-14510

GateManager versions prior to 9.2c, The affected product contains a hard-coded credential for telnet, allowing an unprivileged attacker to execute commands as root...

9.8CVSS7.4AI score0.02487EPSS
Exploits0References1
Prion
Prion
added 2020/08/25 2:15 p.m.32 views

Hardcoded credentials

GateManager versions prior to 9.2c, The affected product contains a hard-coded credential for telnet, allowing an unprivileged attacker to execute commands as root...

10CVSS9.6AI score0.02487EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder