CVE-2024-39374 Use of Hard-coded Credentials in TELSAT marKoni FM Transmitter

TELSAT marKoni FM Transmitters are vulnerable to an attacker exploiting a hidden admin account that can be accessed through the use of hard-coded credentials...

CVE-2024-39374

CVE-2024-39374 affects TELSAT marKoni FM Transmitters (Markoni-D/Compact and Markoni-DH/Exciter+Amplifiers; affected versions prior to 2.0.1). Root cause: a hidden admin account accessible via hard-coded credentials, enabling an attacker to gain administrative access without authentication. Publi...

CVE-2024-0949

Missing Authentication, Files or Directories Accessible to External Parties, Use of Hard-coded Credentials vulnerability in Talya Informatics Elektraweb allows Authentication Bypass. This issue affects Elektraweb: before v17.0.68...

TELSAT marKoni FM Transmitter

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION : Exploitable remotely/low attack complexity/public exploits are available Vendor : marKoni Equipment : Markoni-D Compact FM Transmitters, Markoni-DH Exciter+Amplifiers FM Transmitters Vulnerabilities : Command Injection, Use of Hard-coded...

PT-2024-28475 · Telsat · Telsat Markoni Fm Transmitters

Name of the Vulnerable Software and Affected Versions: TELSAT marKoni FM Transmitters affected versions not specified Description: The issue concerns a hidden admin account in TELSAT marKoni FM Transmitters that can be accessed using hard-coded credentials, allowing an attacker to exploit this...

luci-app-lucky security vulnerability

luci-app-lucky is a LuCI application designed for OpenWrt firmware by the individual developer gdy666. A security vulnerability exists in luci-app-lucky version v2.8.3, which stems from the use of hard-coded credentials...

CVE-2023-6198

Use of Hard-coded Credentials vulnerability in Baicells Snap Router BaiCEBMI on EP3011 User Passwords modules allows unauthorized access to the device...

CVE-2023-6198 Hard Coded Credential

Use of Hard-coded Credentials vulnerability in Baicells Snap Router BaiCEBMI on EP3011 User Passwords modules allows unauthorized access to the device...

CVE-2023-6198 Hard Coded Credential

Use of Hard-coded Credentials vulnerability in Baicells Snap Router BaiCEBMI on EP3011 User Passwords modules allows unauthorized access to the device...

CVE-2023-6198

The CVE-2023-6198 entry describes a Hard-coded Credential vulnerability in Baicells Snap Router BaiCE_BMI on EP3011 (User Passwords modules). The issue enables unauthorized access to the device due to hard-coded credentials used by the appliance, as summarized in multiple sources (NVD/Red Hat/CVE...

Baicells Snap Router Security Vulnerability

Baicells Snap Router is a series of routers from Baicells USA. A security vulnerability exists in Baicells Snap Router BaiCEBMI EP3011, which stems from a hard-coded credentials vulnerability in the application that allows unauthorized access to the device...

Streamline NX Client < 3.4.3.2 / 3.5.x < 3.5.1.202 / 3.6.x < 3.6.2.2 / 3.7.x < 3.7.2.1 Privilege Escalation (2024-000005)

The version of Streamline NX Client installed on the remote host is prior to 3.4.3.2, 3.5.1.202, 3.6.2.2, or 3.7.2.1. It is, therefore, affected by a vulnerability as referenced in the 2024-000005 advisory. - Use of hard-coded credentials issue exists in Ricoh Streamline NX PC Client ver.3.7.2 an...

CVE-2024-36480

Use of hard-coded credentials issue exists in Ricoh Streamline NX PC Client ver.3.7.2 and earlier. If this vulnerability is exploited, an attacker may obtain LocalSystem Account of the PC where the product is installed. As a result, unintended operations may be performed on the PC...

CVE-2024-36480

Use of hard-coded credentials issue exists in Ricoh Streamline NX PC Client ver.3.7.2 and earlier. If this vulnerability is exploited, an attacker may obtain LocalSystem Account of the PC where the product is installed. As a result, unintended operations may be performed on the PC...

CVE-2024-36480

Use of hard-coded credentials issue exists in Ricoh Streamline NX PC Client ver.3.7.2 and earlier. If this vulnerability is exploited, an attacker may obtain LocalSystem Account of the PC where the product is installed. As a result, unintended operations may be performed on the PC...

PT-2024-27022 · Ricoh · Ricoh Streamline Nx Pc Client

Name of the Vulnerable Software and Affected Versions: Ricoh Streamline NX PC Client versions 3.7.2 and earlier Description: The issue is related to the use of hard-coded credentials. If exploited, an attacker may obtain the LocalSystem Account of the PC where the product is installed, potentiall...

Multiple vulnerabilities in Ricoh Streamline NX PC Client

Overview Ricoh Streamline NX PC Client provided by RICOH COMPANY, LTD. contains multiple vulnerabilities listed below. ricoh-2024-000004 Improper restriction of communication channel to intended endpoints CWE-923 - CVE-2024-36252 ricoh-2024-000005 Use of hard-coded credentials CWE-798 -...

JVN#00442488: Multiple vulnerabilities in Ricoh Streamline NX PC Client

Ricoh Streamline NX PC Client provided by RICOH COMPANY, LTD. contains multiple vulnerabilities listed below. Improper restriction of communication channel to intended endpoints CWE-923 CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L Base Score 6.3 CVE-2024-36252 ricoh-2024-000004 Use of hard-coded...

Ricoh Streamline NX PC Client Security Vulnerability

Ricoh Streamline NX PC Client is a document management PC client application from Ricoh Japan. A security vulnerability exists in Ricoh Streamline NX PC Client version 3.7.2 and earlier versions, which stems from the use of hard-coded credentials...

Multiple vulnerabilities in Toshiba Tec and Oki Electric Industry MFPs

Overview MFPs multifunction printers provided by Toshiba Tec Corporation and Oki Electric Industry Co., Ltd. contain multiple vulnerabilities listed below. Improper Restriction of Recursive Entity References in DTDs 'XML Entity Expansion' CWE-776 - CVE-2024-27141, CVE-2024-27142 Execution with...