3819 matches found
CVE-2023-38433
Fujitsu Real-time Video Transmission Gear "IP series" use hard-coded credentials, which may allow a remote unauthenticated attacker to initialize or reboot the products, and as a result, terminate the video transmission. Affected products and versions are as follows: IP-HE950E firmware versions...
CVE-2023-38433
CVE-2023-38433 affects Fujitsu Real-time Video Transmission Gear IP series. The vulnerability arises from hard-coded credentials (CWE-798) that could allow a remote, unauthenticated attacker to log in and initialize or reboot devices, terminating video transmission. Affected firmware versions inc...
JVN#95727578: Fujitsu Real-time Video Transmission Gear "IP series" uses a hard-coded credentials
Real-time Video Transmission Gear "IP series" provided by Fujitsu Limited uses a hard-coded credentials CWE-798 . The product's credentials for factory testing may be obtained by reverse engineering and others. Impact An attacker who log in to the web interface using the obtained credentials may...
Fujitsu Real-time Video Transmission Gear IP series 信任管理问题漏洞
The Fujitsu Real-time Video Transmission Gear IP series is a real-time video transmission device from Fujitsu, Japan. A security vulnerability exists in the Fujitsu Real-time Video Transmission Gear IP series, which stems from a hard-coded credentials vulnerability. An attacker could use this...
PT-2023-5954 · Fujitsu · Ip-900D +10
Name of the Vulnerable Software and Affected Versions: Fujitsu Real-time Video Transmission Gear "IP series" versions V01L001 to V02L061 Fujitsu IP-HE950E firmware versions V01L001 to V01L053 Fujitsu IP-HE950D firmware versions V01L001 to V01L053 Fujitsu IP-HE900E firmware versions V01L001 to...
Hard-coded System User Credentials in Folio Data Export Spring module
Impact The module creates a system user that is used to perform internal module-to-module operations. Credentials for this user are hard-coded in the source code. This makes it trivial to authenticate as this user, allowing unauthorized read access to these mod-inventory-storage records: instance...
GHSA-VF78-3Q9F-92G3 Hard-coded System User Credentials in Folio Data Export Spring module
Impact The module creates a system user that is used to perform internal module-to-module operations. Credentials for this user are hard-coded in the source code. This makes it trivial to authenticate as this user, resulting in unauthorized access to potentially dangerous APIs, allowing to view a...
Hard-coded System User Credentials in Folio Data Export Spring module
Impact The module creates a system user that is used to perform internal module-to-module operations. Credentials for this user are hard-coded in the source code. This makes it trivial to authenticate as this user, resulting in unauthorized access to potentially dangerous APIs, allowing to view a...
PT-2023-32949 · Folio · Mod-Data-Export-Spring
Name of the Vulnerable Software and Affected Versions: FOLIO mod-data-export-spring versions before 1.5.4 FOLIO mod-data-export-spring versions from 2.0.0 to 2.0.2 Description: The issue concerns hard-coded credentials in the mod-data-export-spring module, allowing unauthenticated users to access...
PT-2023-32947 · Unknown · Mod-Inventory-Storage +1
Name of the Vulnerable Software and Affected Versions: mod-remote-storage versions under 1.7.2 mod-remote-storage versions 2.0.0 through 2.0.3 Description: The issue concerns hard-coded credentials in the mod-remote-storage module, allowing unauthorized users to gain read access to...
Use Of Hard-coded Credentials
gitLab is vulnerable to Use of Hard-coded Credentials. This vulnerability exists because of hardcoded passwords being set for accounts registered through omniauth in gitLab, resulting in an authentication issue...
Juniper Junos OS Vulnerability (JSA11141)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA11141 advisory. - This issue is not applicable to NFX NextGen Software. On NFX Series devices the use of Hard-coded Credentials in Juniper Networks Junos OS allows an attacker to take over...
Hardcoded credentials
Use of Hard-coded Cryptographic Key vulnerability in SonicWall GMS, SonicWall Analytics. This issue affects GMS: 9.3.2-SP1 and earlier versions; Analytics: 2.5.0.4-R7 and earlier versions...
Hard-coded credentials in Technicolor TG670 DSL gateway router
Overview The Technicolor TG670 DSL Gateway Router includes a hard-coded service account that allows for authentication over services on the WAN interface, using HTTP, SSH, or TELNET. The authenticated user can use it to gain full administrative control of the router. Description A hard-coded...
CVE-2023-37286 SmartBPM.NET - Use of Hard-Coded Credentials - 1
SmartSoft SmartBPM.NET has a vulnerability of using hard-coded machine key. An unauthenticated remote attacker can use the machine key to send serialized payload to the server to execute arbitrary code and disrupt service...
CVE-2023-37287 SmartBPM.NET - Use of Hard-Coded Credentials - 2
SmartBPM.NET has a vulnerability of using hard-coded authentication key. An unauthenticated remote attacker can exploit this vulnerability to access system with regular user privilege to read application data, and execute submission and approval processes...
CVE-2023-35987
PiiGAB M-Bus contains hard-coded credentials which it uses for authentication...
Hardcoded credentials
PiiGAB M-Bus contains hard-coded credentials which it uses for authentication...
CVE-2023-35987
CVE-2023-35987 concerns hard-coded credentials in PiiGAB M-Bus authentication. The vulnerability affects the M-Bus SoftwarePack 900S product family and is described in multiple sources (ICS/CISA advisory and CVE records). Root cause: hard-coded credentials used for authentication, enabling remote...
Exploit for Use of Hard-coded Credentials in Clickstudios Passwordstate
CVE-20...