3817 matches found
CVE-2025-65855
The OTA firmware update mechanism in Netun Solutions HelpFlash IoT firmware v18178221102ASCIIPRO1R550 uses hard-coded WiFi credentials identical across all devices and does not authenticate update servers or validate firmware signatures. An attacker with brief physical access can activate OTA mod...
PT-2025-52254
Use of Hard-coded Credentials vulnerability in Utarit Informatics Services Inc. SoliClub allows Authentication Abuse.This issue affects SoliClub: before 5.3.7...
PT-2025-52223
Use of Hard-coded Credentials vulnerability in Utarit Information Services Inc. SoliClub allows Read Sensitive Constants Within an Executable.This issue affects SoliClub: from 5.2.4 before 5.3.7...
Utarit SoliClub 信任管理问题漏洞
Utarit SoliClub is a mobile application from Utarit, Inc. A trust management issue vulnerability exists in Utarit SoliClub versions prior to 5.3.7, which stems from hard-coded credentials and could result in reading sensitive constants...
Utarit SoliClub 信任管理问题漏洞
Utarit SoliClub is a mobile application from Utarit, Inc. A trust management issue vulnerability exists in Utarit SoliClub versions prior to 5.3.7, which stems from the use of hard-coded credentials and could lead to authentication abuse...
EUVD-2025-203902
The OTA firmware update mechanism in Netun Solutions HelpFlash IoT firmware v18178221102ASCIIPRO1R550 uses hard-coded WiFi credentials identical across all devices and does not authenticate update servers or validate firmware signatures. An attacker with brief physical access can activate OTA mod...
CVE-2025-65855
The OTA firmware update mechanism in Netun Solutions HelpFlash IoT firmware v18178221102ASCIIPRO1R550 uses hard-coded WiFi credentials identical across all devices and does not authenticate update servers or validate firmware signatures. An attacker with brief physical access can activate OTA mod...
Netun Solutions HelpFlash IoT 安全漏洞
Netun Solutions HelpFlash IoT is a smart connected vehicle emergency warning light from Netun Solutions, Spain. A security vulnerability exists in Netun Solutions HelpFlash IoT version v18178221102ASCIIPRO1R550, which stems from an OTA firmware update mechanism that uses hard-coded WiFi credentia...
PT-2025-51840
Name of the Vulnerable Software and Affected Versions Netun Solutions HelpFlash IoT version v18 178 221102 ASCII PRO 1R5 50 Description The over-the-air OTA firmware update process in the software does not properly authenticate update servers or validate firmware signatures, and relies on...
Meatmeet Pro App 安全漏洞
Meatmeet Pro App is a meat product purchasing app from Meatmeet, Inc. A security vulnerability exists in Meatmeet Pro App version v1.1.2.0, which stems from the mobile app storing hard-coded credentials that could lead to unauthorized network access...
Meatmeet Pro BBQ Thermometer 安全漏洞
Meatmeet Pro BBQ Thermometer is an advanced smart thermometer from Meatmeet. A security vulnerability exists in the Meatmeet Pro BBQ Thermometer version v1.0.34.4, which stems from the inclusion of hard-coded Wi-Fi credentials in the firmware, which could lead to unauthorized network access...
EUVD-2025-201542
A vulnerability has been found in TOZED ZLT M30S and ZLT M30S PRO 1.47/3.09.06. Affected is an unknown function of the component Web Interface. Such manipulation leads to hard-coded credentials. The attack needs to be initiated within the local network. The exploit has been disclosed to the publi...
CVE-2025-14126
A vulnerability has been found in TOZED ZLT M30S and ZLT M30S PRO 1.47/3.09.06. Affected is an unknown function of the component Web Interface. Such manipulation leads to hard-coded credentials. The attack needs to be initiated within the local network. The exploit has been disclosed to the publi...
CVE-2025-14126 TOZED ZLT M30S/ZLT M30S PRO Web hard-coded credentials
A vulnerability has been found in TOZED ZLT M30S and ZLT M30S PRO 1.47/3.09.06. Affected is an unknown function of the component Web Interface. Such manipulation leads to hard-coded credentials. The attack needs to be initiated within the local network. The exploit has been disclosed to the publi...
CVE-2025-14126
The CVE-2025-14126 affects TOZED ZLT M30S and ZLT M30S PRO devices (versions 1.47 and 3.09.06) where a vulnerability exists in the Web Interface component that leads to hard-coded credentials being exposed. This requires local-network access and is supported by multiple sources in the Connected d...
TOZED ZLT M30S和TOZED ZLT M30S PRO 信任管理问题漏洞
The TOZED ZLT M30S and TOZED ZLT M30S PRO are both mobile WiFi routers from China's Tongze Kangwei TOZED. A trust management issue vulnerability exists in TOZED ZLT M30S and TOZED ZLT M30S PRO versions 1.47 and 3.09.06, which stems from a hard-coded credentials issue that could lead to a local...
PT-2025-49359
Name of the Vulnerable Software and Affected Versions TOZED ZLT M30S versions 1.47 and 3.09.06 TOZED ZLT M30S PRO versions 1.47 and 3.09.06 Description A security issue exists in TOZED ZLT M30S and ZLT M30S PRO devices. The issue involves hard-coded credentials within an unknown function of the W...
CVE-2025-66237
DCIM dcTrack platforms utilize default and hard-coded credentials for access. An attacker could use these credentials to administer the database, escalate privileges on the platform or execute system commands on the host...
CVE-2025-66237
DCIM dcTrack platforms utilize default and hard-coded credentials for access. An attacker could use these credentials to administer the database, escalate privileges on the platform or execute system commands on the host...
CVE-2025-66237
CVE-2025-66237 affects Sunbird DCIM dcTrack and related platforms, where default and hard-coded credentials enable an authenticated attacker to administer the database, escalate privileges on the platform, or execute system commands on the host. Multiple sources confirm the existence of hard-code...