3819 matches found
CVE-2022-34840
Use of hard-coded credentials vulnerability in multiple Buffalo network devices allows a network-adjacent attacker to alter?configuration settings of the device. The affected products/versions are as follows: WZR-300HP firmware Ver. 2.00 and earlier, WZR-450HP firmware Ver. 2.00 and earlier,...
CVE-2022-34840
CVE-2022-34840 concerns a hard-coded credentials vulnerability in Buffalo network devices. The affected models include WZR-300HP, WZR-450HP, WZR-600DHP, WZR-900DHP, HW-450HP-ZWE, WZR-450HP-CWT, WZR-450HP-UB, WZR-600DHP2, and WZR-D1100H, with firmware versions as listed (older than specified updat...
PT-2022-22390 · Buffalo · Wzr-450Hp-Cwt +8
Name of the Vulnerable Software and Affected Versions: WZR-300HP firmware Ver. 2.00 and earlier WZR-450HP firmware Ver. 2.00 and earlier WZR-600DHP firmware Ver. 2.00 and earlier WZR-900DHP firmware Ver. 1.15 and earlier HW-450HP-ZWE firmware Ver. 2.00 and earlier WZR-450HP-CWT firmware Ver. 2.00...
CVE-2022-34840
Use of hard-coded credentials vulnerability in multiple Buffalo network devices allows a network-adjacent attacker to alter?configuration settings of the device. The affected products/versions are as follows: WZR-300HP firmware Ver. 2.00 and earlier, WZR-450HP firmware Ver. 2.00 and earlier,...
Book Store Management System 信任管理问题漏洞
Book Store Management System is an online bookstore system by Carlo Montero, an individual developer. A security vulnerability exists in Book Store Management System v1.0, which stems from its use of hard-coded credentials that allow an attacker to elevate privileges and access the administration...
Sanitization Management System 信任管理问题漏洞
Sanitization Management System is a sanitization management system by Carlo Montero Personal Developer. A security vulnerability exists in Sanitization Management System v1.0, which stems from its use of hard-coded credentials that allow an attacker to elevate privileges and access the...
CVE-2022-32967 Realtek RTL8111EP-CG/RTL8111FP-CG - Use of Hard-coded Credentials
RTL8111EP-CG/RTL8111FP-CG DASH function has hard-coded password. An unauthenticated physical attacker can use the hard-coded default password during system reboot triggered by other user, to acquire partial system information such as serial number and server information...
CVE-2022-32967 Realtek RTL8111EP-CG/RTL8111FP-CG - Use of Hard-coded Credentials
RTL8111EP-CG/RTL8111FP-CG DASH function has hard-coded password. An unauthenticated physical attacker can use the hard-coded default password during system reboot triggered by other user, to acquire partial system information such as serial number and server information...
Hardcoded credentials
Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A and later allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated attackers may view programs and project files or execute programs illegally...
Hardcoded credentials
Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.095Z and Motion Control SettingGX Works3 related software versions from 1.000A and later allows a remote unauthenticated attacker to disclose or tamper with sensitive information. As a...
Warning: New RapperBot Campaign Aims to Launch DDoS Attacks at Game Servers
Cybersecurity researchers have unearthed new samples of malware called RapperBot that are being used to build a botnet capable of launching Distributed Denial of Service DDoS attacks against game servers. "In fact, it turns out that this campaign is less like RapperBot than an older campaign that...
Exploit for Use of Hard-coded Credentials in Pctechsoft Pcsecure
PCSecure V5.0.8.xw - Use of Hard-coded Credentials in configur...
CVE-2022-38117 Juiker app - Hard-coded Credentials
Juiker app hard-coded its AES key in the source code. A physical attacker, after getting the Android root privilege, can use the AES key to decrypt users’ ciphertext and tamper with it...
CVE-2022-38117 Juiker app - Hard-coded Credentials
Juiker app hard-coded its AES key in the source code. A physical attacker, after getting the Android root privilege, can use the AES key to decrypt users’ ciphertext and tamper with it...
ORing Net IAP-420+ 安全漏洞
The ORing Net IAP-420+ is a wireless access point from China Power ORing. A security vulnerability exists in the ORing Net IAP-420+ version 2.0m, which stems from a telnet server that is enabled by default and cannot be permanently disabled, which can be used to connect to the device and obtain a...
CVE-2022-42176
In PCTechSoft PCSecure V5.0.8.xw, use of Hard-coded Credentials in configuration files leads to admin panel access...
CVE-2022-42176
In PCTechSoft PCSecure V5.0.8.xw, use of Hard-coded Credentials in configuration files leads to admin panel access...
Hardcoded credentials
In PCTechSoft PCSecure V5.0.8.xw, use of Hard-coded Credentials in configuration files leads to admin panel access...
CVE-2022-42176
In PCTechSoft PCSecure V5.0.8.xw, use of Hard-coded Credentials in configuration files leads to admin panel access...
PCTechSoft PCSecure 信任管理问题漏洞
PCTechSoft PCSecure is a personal computer security software from PCTechSoft. A security vulnerability exists in PCTechSoft PCSecure version V5.0.8.xw that stems from the use of hard-coded credentials in configuration files...