Siemens CP-8031 信任管理问题漏洞

The SICAM A8000 RTU Remote Terminal Unit series is a modular family of devices for remote control and automation applications in all areas of energy supply. A hard-coded credentials vulnerability exists in the CPCI85 firmware of the Siemens SICAM A8000 device, which can be exploited by an attacke...

Siemens CPCI85 Firmware of SICAM A8000 Devices

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

CVE-2023-2306

Qognify NiceVision versions 3.1 and prior are vulnerable to exposing sensitive information using hard-coded credentials. With these credentials an attacker can retrieve information about the cameras, user information, and modify database records...

CVE-2023-2306

Qognify NiceVision versions 3.1 and prior are vulnerable to exposing sensitive information using hard-coded credentials. With these credentials an attacker can retrieve information about the cameras, user information, and modify database records...

CVE-2023-2306 Qognify NiceVision Use of Hard-coded Credentials

Qognify NiceVision versions 3.1 and prior are vulnerable to exposing sensitive information using hard-coded credentials. With these credentials an attacker can retrieve information about the cameras, user information, and modify database records...

CVE-2023-2306

Qognify NiceVision versions 3.1 and earlier are affected by a vulnerability (CVE-2023-2306) that exposes sensitive information due to hard-coded credentials. With these credentials, an attacker could retrieve information about cameras, user data, and modify database records. The issue is document...

Cisco Releases Urgent Patch to Fix Critical Flaw in Emergency Responder Systems

Cisco has released updates to address a critical security flaw impacting Emergency Responder that allows unauthenticated, remote attackers to sign into susceptible systems using hard-coded credentials. The vulnerability, tracked as CVE-2023-20101 CVSS score: 9.8, is due to the presence of static...

Qognify NiceVision

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION : Exploitable remotely/low attack complexity Vendor : Qognify Equipment : NiceVision Vulnerability : Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to retrieve sensitive...

Qognify NiceVision Trust Management Issue Vulnerability

Qognify NiceVision is a comprehensive, open platform IP video surveillance solution from Qognify. providing surveillance coverage and control for security-conscious environments. Qognify NiceVision 3.1 and prior versions suffer from a trust management issue vulnerability that stems from the use o...

Delta Electronics DIAEnergie HandlerUploadCalendar Use Of Hard-Coded Credentials Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of Delta Electronics DIAEnergie. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of requests to the HandlerUploadCalendar endpoint. The issue...

Delta Electronics DIAEnergie HandlerUploadTag Use Of Hard-Coded Credentials Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of Delta Electronics DIAEnergie. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of requests to the HandlerUploadTag endpoint. The issue resul...

PT-2023-5879 · Qognify · Qognify Nicevision

Name of the Vulnerable Software and Affected Versions: Qognify NiceVision versions 3.1 and prior Description: The issue is related to the use of hard-coded credentials, which can be exploited by an attacker to retrieve sensitive information about cameras and users, as well as modify database...

Delta Electronics DIAEnergie HandlerUploadCarbon Use Of Hard-Coded Credentials Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of Delta Electronics DIAEnergie. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of requests to the HandlerUploadCarbon endpoint. The issue...

Microweber uses hard coded credentials

Use of Hard-coded Credentials in GitHub repository microweber/microweber 1.3.4 and prior. A patch is available and anticipated to be part of version 2.0...

GHSA-R657-3WQH-G2X9 Microweber uses hard coded credentials

Use of Hard-coded Credentials in GitHub repository microweber/microweber 1.3.4 and prior. A patch is available and anticipated to be part of version 2.0...

CVE-2023-5318

Use of Hard-coded Credentials in GitHub repository microweber/microweber prior to 2.0...

CVE-2023-5318 Use of Hard-coded Credentials in microweber/microweber

Use of Hard-coded Credentials in GitHub repository microweber/microweber prior to 2.0...

CVE-2023-5318

CVE-2023-5318 affects microweber/microweber prior to version 2.0, where hard-coded credentials are used in the repository. The issue originates from hard-coded credentials and is addressed by upgrading to version 2.0 or later (a patch is available/anticipated in 2.0). Impact details are stated in...

CVE-2023-5318 Use of Hard-coded Credentials in microweber/microweber

Use of Hard-coded Credentials in GitHub repository microweber/microweber prior to 2.0...

Microweber Trust Management Issues Vulnerabilities

Microweber is an online store management system that provides drag and drop functionality from the Microweber community in the United States. The system includes modules for adding products, images, and more. A vulnerability with trust management issues exists in Microweber versions prior to 2.0,...