3819 matches found
GE Vernova EnerVista UR 信任管理问题漏洞
GE Vernova EnerVista UR is a device configuration tool from GE Vernova USA that is compatible with all UR relay applications. A trust management issue vulnerability exists in the GE Vernova EnerVista UR that stems from the use of hard-coded credentials, which could lead to elevation of privilege...
CVE-2025-1393
An unauthenticated remote attacker can use hard-coded credentials to gain full administration privileges on the affected product...
CVE-2025-1393 Weidmueller: Authentication Vulnerability due to Hard-coded Credentials
An unauthenticated remote attacker can use hard-coded credentials to gain full administration privileges on the affected product...
CVE-2025-1393 Weidmueller: Authentication Vulnerability due to Hard-coded Credentials
An unauthenticated remote attacker can use hard-coded credentials to gain full administration privileges on the affected product...
CVE-2025-1393
CVE-2025-1393: An unauthenticated remote attacker can use hard-coded credentials to gain full administration privileges on the affected product. Multiple connected sources confirm unauthenticated access with full admin rights; one listing ties the issue to Weidmueller PROCON-WIN versions prior to...
Weidmueller Interface PROCON-WIN 信任管理问题漏洞
Weidmueller Interface PROCON-WIN is a controller from Weidmueller Interface. A trust management issue vulnerability exists in Weidmueller Interface PROCON-WIN versions prior to 5.7.14.1, which stems from the use of hard-coded credentials that allow an unauthenticated attacker to gain administrato...
CVE-2025-1879
A vulnerability was found in i-Drive i11 and i12 up to 20250227 and classified as problematic. This issue affects some unknown processing of the component APK. The manipulation leads to hard-coded credentials. It is possible to launch the attack on the physical device. It was not possible to...
CVE-2025-1879
A vulnerability was found in i-Drive i11 and i12 up to 20250227 and classified as problematic. This issue affects some unknown processing of the component APK. The manipulation leads to hard-coded credentials. It is possible to launch the attack on the physical device. It was not possible to...
CVE-2025-1879 i-Drive i11/i12 APK hard-coded credentials
A vulnerability was found in i-Drive i11 and i12 up to 20250227 and classified as problematic. This issue affects some unknown processing of the component APK. The manipulation leads to hard-coded credentials. It is possible to launch the attack on the physical device. It was not possible to...
CVE-2025-1879
CVE-2025-1879 affects i-Drive i11/i12 APK (up to 20250227). Description: hard-coded credentials allow a direct attack on the physical device; maintainer unknown and product appears end-of-life. No explicit exploit/vector details or mitigation are provided in the supplied documents; connected sour...
CVE-2025-1879 i-Drive i11/i12 APK hard-coded credentials
A vulnerability was found in i-Drive i11 and i12 up to 20250227 and classified as problematic. This issue affects some unknown processing of the component APK. The manipulation leads to hard-coded credentials. It is possible to launch the attack on the physical device. It was not possible to...
i-Drive i11和i-Drive i12 安全漏洞
The i-Drive i11 and i-Drive i12 are both a car recorder from i-Drive, Inc. A security vulnerability exists in i-Drive i11 and i-Drive i12 20250227 and prior versions, which stems from hard-coded credentials and could lead to a physical device attack...
CVE-2024-9334
Use of Hard-coded Credentials, Storage of Sensitive Data in a Mechanism without Access Control vulnerability in E-Kent Pallium Vehicle Tracking allows Authentication Bypass. This issue affects Pallium Vehicle Tracking: before 17.10.2024...
12,000+ API Keys and Passwords Found in Public Datasets Used for LLM Training
A dataset used to train large language models LLMs has been found to contain nearly 12,000 live secrets, which allow for successful authentication. The findings once again highlight how hard-coded credentials pose a severe security risk to users and organizations alike, not to mention compounding...
Bosscomm IF740 信息泄露漏洞
Bosscomm IF740 is an OBD2 scanner for automotive diagnostics from Bosscomm. It can read the codes of the car engine, SRS, ABS, TCM, and so on. A security vulnerability exists in the Bosscomm IF740 that stems from a hard-coded plaintext credential disclosure...
CVE-2024-9334
Use of Hard-coded Credentials, Storage of Sensitive Data in a Mechanism without Access Control vulnerability in E-Kent Pallium Vehicle Tracking allows Authentication Bypass. This issue affects Pallium Vehicle Tracking: before 17.10.2024...
CVE-2024-9334
Use of Hard-coded Credentials, Storage of Sensitive Data in a Mechanism without Access Control vulnerability in E-Kent Pallium Vehicle Tracking allows Authentication Bypass. This issue affects Pallium Vehicle Tracking: before 17.10.2024...
CVE-2024-9334 Information Disclosure in E-Kent's Pallium Vehicle Tracking
Use of Hard-coded Credentials, Storage of Sensitive Data in a Mechanism without Access Control vulnerability in E-Kent Pallium Vehicle Tracking allows Authentication Bypass. This issue affects Pallium Vehicle Tracking: before 17.10.2024...
CVE-2024-9334 Information Disclosure in E-Kent's Pallium Vehicle Tracking
Use of Hard-coded Credentials, Storage of Sensitive Data in a Mechanism without Access Control vulnerability in E-Kent Pallium Vehicle Tracking allows Authentication Bypass. This issue affects Pallium Vehicle Tracking: before 17.10.2024...
CVE-2024-9334
CVE-2024-9334 concerns the E‑Kent Pallium Vehicle Tracking system, where the root cause is the use of hard‑coded credentials and storage of sensitive data in a mechanism without proper access control. This combination enables an authentication bypass , potentially allowing unauthorized access to ...