CVE-2022-25213

Improper physical access control and use of hard-coded credentials in /etc/passwd permits an attacker with physical access to obtain a root shell via an unprotected UART port on the device. The same port exposes an unauthenticated Das U-Boot BIOS shell...

VulnCheck KEV: CVE-2021-44207

Acclaim Systems USAHERDS contains a hard-coded credentials vulnerability that could allow an attacker to achieve remote code execution on the system that runs the application. The MachineKey must be obtained via a separate vulnerability or other channel...

PTC Axeda agent and Axeda Desktop Server (Update C)

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: PTC Equipment: Axeda agent, Axeda Desktop Server Vulnerabilities: Use of Hard-coded Credentials, Missing Authentication for Critical Function, Exposure of Sensitive Information to an Unauthorized Actor,...

CVE-2022-25213

Improper physical access control and use of hard-coded credentials in /etc/passwd permits an attacker with physical access to obtain a root shell via an unprotected UART port on the device. The same port exposes an unauthenticated Das U-Boot BIOS shell...

CVE-2022-25213

CVE-2022-25213 describes improper physical access control and hard-coded credentials in /etc/passwd that allow an attacker with physical access to obtain a root shell via an unprotected UART port, which also exposes an unauthenticated Das U-Boot BIOS shell. The description applies to devices with...

PT-2022-17152 · Phicomm · K2 Firmware +1

Name of the Vulnerable Software and Affected Versions: No specific software or version is mentioned, so the description is: Device affected versions not specified Description: The issue concerns improper physical access control and the use of hard-coded credentials in /etc/passwd. This allows an...

Home Owners Collection Management System信任管理问题漏洞

Home Owners Collection Management System, a homeowner collection management system, is vulnerable to a trust management issue stemming from Home Owners Collection Management System v1.0. System v1.0 was found to contain hard-coded credentials, which could be exploited by an attacker to escalate...

BD Pyxis

1. EXECUTIVE SUMMARY CVSS v3 7.0 Vendor: Becton, Dickinson and Company BD Equipment: Pyxis Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to gain access to electronic protected health information ePHI or other...

BD Viper LT

1. EXECUTIVE SUMMARY CVSS v3 8.0 ATTENTION: Low attack complexity Vendor: Becton, Dickinson and Company BD Equipment: Viper LT Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to access, modify, or delete...

Home Owners Collection Management System 信任管理问题漏洞

Home Owners Collection Management System, a homeowner collection management system, is vulnerable to a trust management issue stemming from Home Owners Collection Management System v1.0. System v1.0 was found to contain hard-coded credentials, which could be exploited by an attacker to escalate...

Exploit for Use of Hard-coded Credentials in Qxip Homer_Webapp

CVE-2022-22845-Exploit Exploit for CVE...

Schneider Electric Easergy P5 and P3

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Low attack complexity Vendor: Schneider Electric Equipment: Easergy P5 and P3 --------- Begin Update A Part 1 of 4 --------- Vulnerabilities: Use of Hard-Coded Credentials, Classic Buffer Overflow, and Improper Input Validation --------- End Update A...

Celartem Extensis Portfolio 信任管理问题漏洞

Celartem Extensis Portfolio is a digital asset management solution from Celartem Japan. A trust management issue vulnerability exists in Celartem Extensis Portfolio versions 3.0.0 through 3.6.3, which stems from the presence of hard-coded credentials in the main portal and administrator portal. A...

Trend Micro ServerProtect信任管理问题漏洞

Trend Micro ServerProtect is an enterprise-grade anti-virus program from Trend Micro, Inc. It is designed to protect Internet-connected storage systems and block threats at their source. Trend Micro ServerProtect suffers from a trust management issue vulnerability that originates from the presenc...

CVE-2021-27797

Brocade Fabric OS before Brocade Fabric OS v8.2.1c, v8.1.2h, and all versions of Brocade Fabric OS v8.0.x and v7.x contain documented hard-coded credentials, which could allow attackers to gain access to the system...

CVE-2021-27797

Brocade Fabric OS before Brocade Fabric OS v8.2.1c, v8.1.2h, and all versions of Brocade Fabric OS v8.0.x and v7.x contain documented hard-coded credentials, which could allow attackers to gain access to the system...

CVE-2021-27797

Brocade Fabric OS before Brocade Fabric OS v8.2.1c, v8.1.2h, and all versions of Brocade Fabric OS v8.0.x and v7.x contain documented hard-coded credentials, which could allow attackers to gain access to the system...

CVE-2021-27797

CVE-2021-27797 affects Brocade Fabric OS. Versions prior to 8.2.1c, 8.1.2h, and all 8.0.x/7.x releases contain documented hard-coded credentials, enabling access to the system. The root cause is hard-coded admin credentials; impact is high (partial/complete confidentiality, integrity, and availab...

Brocade Fabric OS 信任管理问题漏洞

Brocade Fabric OS FOS is a set of embedded operating systems used in devices such as switches and routers from Brocade USA. Brocade Fabric OS suffers from a trust management issue vulnerability that can be exploited by an attacker to bypass Brocade Fabric OS restrictions by hard-coding credential...

BSA-2021-1722

Security Advisory ID : BSA-2021-1722 Component : hard-coded credentials Revision : 1.0 Brocade Fabric OS before Brocade Fabric OS v8.2.1c, v8.1.2h, and all versions of Brocade Fabric OS v8.0.x and v7.x contain documented hard-coded credentials, which could allow attackers to gain access to the...