Lucene search
K

8070 matches found

NVD
NVD
added 2021/12/21 6:15 p.m.12 views

CVE-2021-44207

Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials...

8.1CVSS0.17578EPSS
Exploits0References3
OSV
OSV
added 2021/12/21 6:15 p.m.5 views

CVE-2021-44207

Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials...

8.1CVSS5.8AI score0.17578EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2021/12/21 5:45 p.m.9 views

CVE-2021-44207

Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials...

7AI score0.17578EPSS
Exploits0References2
CVE
CVE
added 2021/12/21 5:45 p.m.206 views

CVE-2021-44207

CVE-2021-44207 affects Acclaim USAHERDS (version 7.4.0.1 and earlier) due to hard-coded credentials, enabling potential unauthorized access and remote code execution as described by multiple sources. Public docs confirm the issue center is use of hard-coded credentials in USAHERDS, with CVSS metr...

8.1CVSS8.9AI score0.17578EPSS
In wildExploits0References3Affected Software1
Cvelist
Cvelist
added 2021/12/21 5:45 p.m.19 views

CVE-2021-44207

Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials...

8.3AI score0.17578EPSS
Exploits0References2
OSV
OSV
added 2021/12/21 5:15 p.m.4 views

CVE-2021-43587

Dell PowerPath Management Appliance, versions 3.2, 3.1, 3.0 P01, 3.0, and 2.6, use hard-coded cryptographic key. A local high-privileged malicious user may potentially exploit this vulnerability to gain access to secrets and elevate to gain higher privileges...

6.7CVSS5.8AI score0.00239EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/12/21 12:0 a.m.4 views

Acclaim USAHERDS 信任管理问题漏洞

Acclaim Systems Acclaim Usaherds is an Animal Health Emergency Reporting Diagnostic System from Acclaim Systems USA. A security vulnerability exists in Acclaim USAHERDS version 7.4.0.1 and prior versions that stems from the presence of hard-coded credentials in the program...

8.1CVSS8AI score0.17578EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2021/12/21 12:0 a.m.14 views

CVE-2021-44207

Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

8.1CVSS7.3AI score0.17578EPSS
In wildExploits0References3
Positive Technologies
Positive Technologies
added 2021/12/21 12:0 a.m.6 views

PT-2021-24065

Name of the Vulnerable Software and Affected Versions: Acclaim USAHERDS versions 7.4.0.1 and earlier Description: The issue concerns the use of hard-coded credentials in Acclaim USAHERDS, allowing attackers to bypass authentication and gain unauthorized access to sensitive systems and data. This...

8.1CVSS8.6AI score0.17578EPSS
Exploits0References46
ICS
ICS
added 2021/12/21 12:0 a.m.96 views

Fresenius Kabi Agilia Connect Infusion System (Update A)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Fresenius Kabi Equipment: Agilia Connect Infusion System Vulnerabilities: Uncontrolled Resource Consumption, Use of a Broken or Risky Cryptographic Algorithm, Insufficiently Protected Credentials,...

9.8CVSS8.7AI score0.0107EPSS
Exploits0References5
NVD
NVD
added 2021/12/16 7:15 p.m.13 views

CVE-2021-41028

A combination of a use of hard-coded cryptographic key vulnerability CWE-321 in FortiClientEMS 7.0.1 and below, 6.4.6 and below and an improper certificate validation vulnerability CWE-297 in FortiClientWindows, FortiClientLinux and FortiClientMac 7.0.1 and below, 6.4.6 and below may allow an...

8.2CVSS0.00213EPSS
Exploits0References1
OSV
OSV
added 2021/12/16 7:15 p.m.4 views

CVE-2021-41028

A combination of a use of hard-coded cryptographic key vulnerability CWE-321 in FortiClientEMS 7.0.1 and below, 6.4.6 and below and an improper certificate validation vulnerability CWE-297 in FortiClientWindows, FortiClientLinux and FortiClientMac 7.0.1 and below, 6.4.6 and below may allow an...

7.5CVSS5.8AI score0.00213EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/12/16 6:13 p.m.12 views

CVE-2021-41028

A combination of a use of hard-coded cryptographic key vulnerability CWE-321 in FortiClientEMS 7.0.1 and below, 6.4.6 and below and an improper certificate validation vulnerability CWE-297 in FortiClientWindows, FortiClientLinux and FortiClientMac 7.0.1 and below, 6.4.6 and below may allow an...

8.2CVSS6.8AI score0.00213EPSS
Exploits0References1
CVE
CVE
added 2021/12/16 6:13 p.m.71 views

CVE-2021-41028

CVE-2021-41028 affects Fortinet FortiClient EMS up to 7.0.1 (and 6.4.6 and below) and FortiClient components for Windows, Linux, and macOS up to 7.0.1 and 6.4.6 and below. The root causes are a hard-coded cryptographic key in FortiClientEMS and improper certificate validation in FortiClient clien...

8.2CVSS7.4AI score0.00213EPSS
Exploits0References1Affected Software2
CNNVD
CNNVD
added 2021/12/16 12:0 a.m.4 views

Xylem AquaView 信任管理问题漏洞

Xylem AquaView is a next-generation SCADA system from Xylem USA, Inc. to meet the needs of water and wastewater related professionals for a simpler, more personalized way to be able to monitor, control, and optimize their assets anytime, anywhere, from any device. A trust management issue...

9.3CVSS7.9AI score0.00211EPSS
Exploits0References6
ICS
ICS
added 2021/12/16 12:0 a.m.57 views

Xylem AquaView

1. EXECUTIVE SUMMARY CVSS v3 9.3 ATTENTION: Low attack complexity Vendor: Xylem, Inc. Equipment: AquaView Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an authenticated local attacker to create users, delete users,...

9.3CVSS8.9AI score0.00211EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/12/10 12:0 a.m.4 views

Dell PowerPath Management Appliance安全漏洞

The DELL Dell PowerPath Management Appliance is a PowerPath host management application from Dell USA that offers two models: a virtual machine-based appliance and a Docker containerized appliance. A security vulnerability exists in the Dell PowerPath Management Appliance, which can be exploited ...

8.2CVSS6.7AI score0.00239EPSS
Exploits0References3
Huntr
Huntr
added 2021/12/09 7:7 p.m.10 views

Inclusion of Sensitive Information in Source Code in pimcore/demo

Description API Keys is hard coded in the application source code. The use of a hard-coded API Key has many negative implications. Proof of Concept "security" = "method" = "datahubapikey", "apikey" = "6332aa5e6d3d6c0be31da2a8b3442113", "skipPermissionCheck" = FALSE...

0.8AI score
Exploits0
CNVD
CNVD
added 2021/12/09 12:0 a.m.15 views

Fortinet FortiOS Trust Management Issue Vulnerability (CNVD-2021-100290)

Fortinet FortiOS is a security operating system from Fortinet, Inc. that is designed to be used on the FortiGate network security platform. A security vulnerability exists in Fortinet FortiOS, which stems from the use of hard-coded encryption keys that could allow an attacker to retrieve the keys...

7.5CVSS2.1AI score0.01042EPSS
Exploits0References1
OSV
OSV
added 2021/12/08 1:15 p.m.5 views

CVE-2021-26108

A use of hard-coded cryptographic key vulnerability in the SSLVPN of FortiOS before 7.0.1 may allow an attacker to retrieve the key by reverse engineering...

7.5CVSS7.1AI score0.01042EPSS
Exploits0References1
Rows per page
Query Builder