Four-Faith F3x36 安全漏洞

The Four-Faith F3x36 is a portable wireless mobile router from Four-Faith China. A security vulnerability exists in Four-Faith F3x36 version v2.0.0, which stems from the use of hard-coded credentials. An attacker could exploit the vulnerability to gain administrative access via a specially crafte...

Elspec G5 Digital Fault Recorder Use of Hard-coded Credentials (CVE-2024-22083)

An issue was discovered in Elspec G5 digital fault recorder. A hardcoded backdoor session ID exists that can be used for further access to the device, including reconfiguration tasks. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

SunGrow WiNet-S 安全漏洞

SunGrow WiNet-S is a LAN communication module from SunGrow, China. A trust management issue vulnerability exists in SunGrow WiNet-S version V200.001.00.P027 and prior versions, which stems from the use of hard-coded MQTT credentials. An attacker could use this vulnerability to send arbitrary...

Sprecher Automation SPRECON-E Use of Hard-coded Credentials (CVE-2022-4333)

Hardcoded Credentials in multiple SPRECON-E CPU variants of Sprecher Automation allows an remote attacker to take over the device. These accounts should be deactivated according to Sprecher's hardening guidelines. This plugin only works with Tenable.ot. Please visit...

CVE-2024-45832

Hard-coded credentials were included as part of the application binary. These credentials served as part of the application authentication flow and communication with the mobile application. An attacker could access unauthorized information...

CVE-2024-45832 Ossur Mobile Logic Application Use of Hard-coded Credentials

Hard-coded credentials were included as part of the application binary. These credentials served as part of the application authentication flow and communication with the mobile application. An attacker could access unauthorized information...

CVE-2024-45832

CVE-2024-45832 involves Ossur Mobile Logic Application with hard-coded credentials embedded in the binary, enabling an attacker to access unauthorized information. Connected sources indicate vulnerable versions before 1.5.5 (CNNVD) and reiterate the issue across Red Hat and CVE feeds; exploitatio...

Ossur Mobile Logic Application 信任管理问题漏洞

Ossur Mobile Logic Application is an intelligent application for bionic prosthetics from Ossur. A trust management issue vulnerability exists in Ossur Mobile Logic Application versions prior to 1.5.5, which stems from hard-coded credentials being included in the application binary, allowing an...

Smiths Detection HI-SCAN 6040i Hitrax HX-03-19-I 安全漏洞

The Smiths Detection HI-SCAN 6040i Hitrax HX-03-19-I is an entry-level X-ray equipment electronic component from Smiths Detection, UK. A security vulnerability exists in the Smiths Detection HI-SCAN 6040i Hitrax HX-03-19-I that stems from the inclusion of hard-coded credentials used to access...

ABB Cylon Aspect 3.08.03 Hard-coded Secrets

Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description The ABB Cylon Aspect BMS/BAS controller contains multiple instances o...

CVE-2024-9138

Moxa CVE-2024-9138 affects cellular routers, secure routers, and network security appliances. A hard-coded credential flaw enables an authenticated user to escalate to root-level access, per multiple sources. Impact can include system compromise, unauthorized modifications, data exposure, or serv...

CVE-2024-9138 Privilege Escalation in Cellular Router, Secure Router, and Network Security Appliances

Moxa’s cellular routers, secure routers, and network security appliances are affected by a high-severity vulnerability, CVE-2024-9138. This vulnerability involves hard-coded credentials, enabling an authenticated user to escalate privileges and gain root-level access to the system, posing a...

CVE-2024-9138 Privilege Escalation in Cellular Router, Secure Router, and Network Security Appliances

Moxa’s cellular routers, secure routers, and network security appliances are affected by a high-severity vulnerability, CVE-2024-9138. This vulnerability involves hard-coded credentials, enabling an authenticated user to escalate privileges and gain root-level access to the system, posing a...

PT-2025-1200 · Moxa · Edr-G9010 +9

Name of the Vulnerable Software and Affected Versions: Moxa EDR-810 versions prior to the fixed version Moxa EDR-8010 versions prior to the fixed version Moxa EDR-G902 versions prior to the fixed version Moxa EDR-G903 versions prior to the fixed version Moxa EDR-G9004 versions prior to the fixed...

ABB Cylon Aspect 3.08.03 Hardcoded Secrets Vulnerability

ABB Cylon Aspect version 3.08.03 contains multiple instances of hardcoded credentials, including usernames, passwords, and encryption keys embedded in various java classes. This practice poses significant security risks, allowing attackers to gain unauthorized access and compromise the system's...

Acclaim Systems USAHERDS Use of Hard-Coded Credentials Vulnerability

Acclaim Systems USAHERDS contains a hard-coded credentials vulnerability that could allow an attacker to achieve remote code execution on the system that runs the application. The MachineKey must be obtained via a separate vulnerability or other channel...

Dell RecoverPoint for Virtual Machines Trust Management Issue Vulnerability

Dell RecoverPoint for Virtual Machines is a simple, efficient operations and disaster recovery solution from Dell, Inc. For virtualized applications in VMware environments. A trust management issue vulnerability exists in Dell RecoverPoint for Virtual Machines version 6.0 SP1 and version 6.0 SP1...

CVE-2024-48007

Dell RecoverPoint for Virtual Machines 6.0.x contains use of hard-coded credentials vulnerability. A Remote unauthenticated attacker could potentially exploit this vulnerability by gaining access to the source code, easily retrieving these secrets and reusing them to access the system leading to...

CVE-2024-48007

Dell RecoverPoint for Virtual Machines 6.0.x contains use of hard-coded credentials vulnerability. A Remote unauthenticated attacker could potentially exploit this vulnerability by gaining access to the source code, easily retrieving these secrets and reusing them to access the system leading to...

CVE-2024-48007

Dell RecoverPoint for Virtual Machines 6.0.x contains use of hard-coded credentials vulnerability. A Remote unauthenticated attacker could potentially exploit this vulnerability by gaining access to the source code, easily retrieving these secrets and reusing them to access the system leading to...