Kaspersky: Hard Coded username and password in registry

I was using a tool called RegShot to take a snap shot of the registry before and after installation in order to see what changes were being made in the registry and I discovered hard-coded credentials I have attached the full comparison details of the registry changes but these are the lines and...

D-Link DGS-1500 Ax Device Hardcoded Password Vulnerability

The D-Link DGS-1500 Ax devices is a switch device from AUO. The D-Link DGS-1500 Ax devices use hard-coded passwords that allow remote attackers to exploit vulnerabilities by submitting specially crafted requests for unauthorized access to the devices...

CVE-2017-14021

A Use of Hard-coded Cryptographic Key issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e,...

Hardcoded credentials

A Use of Hard-coded Cryptographic Key issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e,...

CVE-2017-14027

A Use of Hard-coded Credentials issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e, and...

Hardcoded credentials

A Use of Hard-coded Credentials issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e, and...

CVE-2017-14021

A Use of Hard-coded Cryptographic Key issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e,...

CVE-2017-14021

CVE-2017-14021 applies to Korenix JetNet devices (JetNet5018G 1.4, JetNet5310G 1.4a, JetNet5428G-2G-2FX 1.4, JetNet5628G-R 1.4, JetNet5628G 1.4, JetNet5728G-24P 1.4, JetNet5828G 1.1d, JetNet6710G-HVDC 1.1e, JetNet6710G 1.1). It involves a Use of Hard-coded Cryptographic Key CWE-321, enabling acce...

CVE-2017-14027

A Use of Hard-coded Credentials issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e, and...

CVE-2017-14027

A Use of Hard-coded Credentials issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e, and...

CVE-2017-14027

CVE-2017-14027 concerns Korenix JetNet industrial Ethernet switches with hard-coded credentials. Affected versions include JetNet5018G v1.4, JetNet5310G v1.4a, JetNet5428G-2G-2FX v1.4, JetNet5628G-R v1.4, JetNet5628G v1.4, JetNet5728G-24P v1.4, JetNet5828G v1.1d, JetNet6710G-HVDC v1.1e, and JetNe...

EMC AppSync Server Hardcoded Password Vulnerability

EMC AppSync is a suite of data protection software from EMC Corporation. The software provides simple, self-service, service-level agreement SLA-driven data protection and storage management for EMC VNX and EMC VMAX storage.EMC AppSync Server is its server version. A hard-coded password...

Korenix JetNet Man-in-the-Middle Attack Vulnerability

JetNet is a family of industrial Ethernet switch products from Clorox. A man-in-the-middle attack vulnerability exists in Korenix JetNet, where an attacker can access hard-coded certificates and private keys, leading to the execution of a man-in-the-middle attack...

Korenix JetNet Unauthorized Access Vulnerability

JetNet is a family of industrial Ethernet switch products from Clorox. An unauthorized access vulnerability exists in Korenix JetNet, which allows an attacker unauthorized access due to the software's use of undocumented hard-coded credentials...

PT-2017-3193 · Korenix · Jetnet5628G-R +7

Name of the Vulnerable Software and Affected Versions: Korenix JetNet JetNet5018G version 1.4 Korenix JetNet JetNet5310G version 1.4a Korenix JetNet JetNet5428G-2G-2FX version 1.4 Korenix JetNet JetNet5628G-R version 1.4 Korenix JetNet JetNet5628G version 1.4 Korenix JetNet JetNet5728G-24P versio...

Korenix JetNet

CVSS v3 9.8 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Korenix Equipment: JetNet Vulnerabilities: Use of Hard-coded Cryptographic Key, Use of Hard-coded Credentials AFFECTED PRODUCTS The following versions of JetNet, an Ethernet switch, are affected: JetNet5018G version...

PT-2017-3192 · Korenix · Jetnet5628G-R +7

Name of the Vulnerable Software and Affected Versions: Korenix JetNet5018G version 1.4 Korenix JetNet5310G version 1.4a Korenix JetNet5428G-2G-2FX version 1.4 Korenix JetNet5628G-R version 1.4 Korenix JetNet5628G version 1.4 Korenix JetNet5728G-24P version 1.4 Korenix JetNet5828G version 1.1d...

ZTE ZXR10 Router Multiple Vulnerabilities( CVE-2017-10931)

Vulnerabilities summary The following advisory describes five 5 vulnerabilities found in ZTE ZXR10 Router. ZXR10 ZSR V2 series router is “the next generation intelligent access router product of ZTE, which integrates routing, switching, wireless, security, and VPN gateway. The product adopts...

Boston Scientific ZOOM LATITUDE PRM Hardcoded Encryption Vulnerability

The ZOOM LATITUDE PRMs are a suite of Boston Scientific's portable cardiac rhythm management systems for communicating with implantable pacemakers and defibrillators, deployed in healthcare and public health. The Boston Scientific ZOOM LATITUDE PRMs have a hard-coded encryption vulnerability that...

ICSMA-17-292-01_Boston Scientific ZOOM LATITUDE PRM Vulnerabilities

OVERVIEW Researchers Jonathan Butts and Billy Rios of Whitescope have identified two vulnerabilities in Boston Scientific’s ZOOM LATITUDE Programmer/Recorder/Monitor PRM – Model 3120. Boston Scientific has provided compensating controls to reduce the risk of exploitation. AFFECTED PRODUCTS The...