Lucene search
K

93 matches found

Cvelist
Cvelist
added 2023/05/22 6:40 a.m.21 views

CVE-2023-33236 MXsecurity Hardcoded Credential Vulnerability

MXsecurity version 1.0 is vulnearble to hardcoded credential vulnerability. This vulnerability has been reported that can be exploited to craft arbitrary JWT tokens and subsequently bypass authentication for web-based APIs...

9.8CVSS9.9AI score0.00973EPSS
Exploits0References1
NVD
NVD
added 2023/01/05 10:15 p.m.22 views

CVE-2022-3928

Hardcoded credential is found in affected products' message queue. An attacker that manages to exploit this vulnerability will be able to access data to the internal message queue. This issue affects FOXMAN-UN product: FOXMAN-UN R15B, FOXMAN-UN R15A, FOXMAN-UN R14B, FOXMAN-UN R14A, FOXMAN-UN R11B...

7.1CVSS7.5AI score0.00211EPSS
Exploits0References2
OSV
OSV
added 2023/01/05 10:15 p.m.2 views

CVE-2022-3928

Hardcoded credential is found in affected products' message queue. An attacker that manages to exploit this vulnerability will be able to access data to the internal message queue. This issue affects FOXMAN-UN product: FOXMAN-UN R15B, FOXMAN-UN R15A, FOXMAN-UN R14B, FOXMAN-UN R14A, FOXMAN-UN R11B...

5.5CVSS5.7AI score0.00211EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/01/05 9:50 p.m.27 views

CVE-2022-3928 Hardcoded credential is found in the message queue

Hardcoded credential is found in affected products' message queue. An attacker that manages to exploit this vulnerability will be able to access data to the internal message queue. This issue affects FOXMAN-UN product: FOXMAN-UN R15B, FOXMAN-UN R15A, FOXMAN-UN R14B, FOXMAN-UN R14A, FOXMAN-UN R11B...

7.1CVSS7AI score0.00211EPSS
Exploits0References2
CVE
CVE
added 2023/01/05 9:50 p.m.58 views

CVE-2022-3928

CVE-2022-3928 describes a hardcoded credential in the message queue of Hitachi Energy FOXMAN-UN and UNEM products (R9C–R15B). The vulnerability allows an attacker who can exploit it to access data in the internal message queue. Connected advisories and records confirm the affected families (FOXMA...

7.1CVSS6.2AI score0.00211EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2023/01/05 9:50 p.m.10 views

CVE-2022-3928 Hardcoded credential is found in the message queue

Hardcoded credential is found in affected products' message queue. An attacker that manages to exploit this vulnerability will be able to access data to the internal message queue. This issue affects FOXMAN-UN product: FOXMAN-UN R15B, FOXMAN-UN R15A, FOXMAN-UN R14B, FOXMAN-UN R14A, FOXMAN-UN R11B...

7.1CVSS6.7AI score0.00211EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/01/05 12:0 a.m.5 views

PT-2023-13717 · Unem +1 · Unem +1

Name of the Vulnerable Software and Affected Versions: FOXMANN-UN versions R9C through R15B UNEM versions R9C through R15B Description: A hardcoded credential is found in the affected products' message queue. An attacker that manages to exploit this issue will be able to access data to the intern...

7.1CVSS5.2AI score0.00211EPSS
Exploits0References5
Packet Storm
Packet Storm
added 2022/11/16 12:0 a.m.243 views

Backdoor.Win32.Quux MVID-2022-0656 Hardcoded Credential

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/13ce53de9ca4c4e6c58f990b442cb419.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Quux Vulnerability: Weak Hardcoded Credentials Family: Quux Type: PE32 MD5:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/09/26 12:0 a.m.262 views

Backdoor.Win32.Bingle.b MVID-2022-0643 Hardcoded Credential

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/eacaa12336f50f1c395663fba92a4d32.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Bingle.b Vulnerability: Weak Hardcoded Credentials Description: The malware...

7.4AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/08/29 12:15 a.m.3 views

CVE-2022-36613

TOTOLINK N600R V4.3.0cu.7647B20210106 was discovered to contain a hardcoded password for root at /etc/shadow.sample...

7.8CVSS7.1AI score0.00283EPSS
Exploits1References2
OSV
OSV
added 2022/08/10 8:15 p.m.2 views

CVE-2022-35491

TOTOLINK A3002RU V3.0.0-B20220304.1804 has a hardcoded password for root in /etc/shadow.sample...

9.8CVSS5.8AI score0.00703EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/12 12:0 a.m.15 views

Siemens SICAM A8000 Hardcoded Voucher Vulnerability

The SICAM A8000 is used for automation applications in all areas of remote control and energy supply. A hard-coded credentials vulnerability exists in the Siemens SICAM A8000, which can be exploited by an attacker to enable the debug port using default credentials...

8.8CVSS8.6AI score0.00906EPSS
Exploits0References1
OSV
OSV
added 2021/12/30 10:15 p.m.4 views

CVE-2021-45732

Netgear Nighthawk R6700 version 1.0.4.120 makes use of a hardcoded credential. It does not appear that normal users are intended to be able to manipulate configuration backups due to the fact that they are encrypted/obfuscated. By extracting the configuration using readily available public tools,...

8.8CVSS7.3AI score0.00779EPSS
Exploits0References1
NVD
NVD
added 2021/12/30 10:15 p.m.33 views

CVE-2021-45732

Netgear Nighthawk R6700 version 1.0.4.120 makes use of a hardcoded credential. It does not appear that normal users are intended to be able to manipulate configuration backups due to the fact that they are encrypted/obfuscated. By extracting the configuration using readily available public tools,...

8.8CVSS0.00779EPSS
Exploits0References1
Prion
Prion
added 2021/12/30 10:15 p.m.23 views

Hardcoded credentials

Netgear Nighthawk R6700 version 1.0.4.120 makes use of a hardcoded credential. It does not appear that normal users are intended to be able to manipulate configuration backups due to the fact that they are encrypted/obfuscated. By extracting the configuration using readily available public tools,...

6.5CVSS8.5AI score0.00779EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/12/30 9:31 p.m.62 views

CVE-2021-45732

Netgear Nighthawk R6700, firmware 1.0.4.120, is affected by a vulnerability where a hardcoded credential can be exploited to extract the device configuration. By using public tools to obtain the backup configuration, an attacker can repackage and restore it to alter settings not intended to be ma...

8.8CVSS8.6AI score0.00779EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2021/08/11 9:15 p.m.22 views

CVE-2020-25560

In SapphireIMS 5.0, it is possible to use the hardcoded credential in clients username: sapphire, password: ims and gain access to the portal. Once the access is available, the attacker can inject malicious OS commands on “ping”, “traceroute” and “snmp” functions and execute code on the server. W...

9.8CVSS0.02129EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/08/11 8:23 p.m.23 views

CVE-2020-25565

In SapphireIMS 5.0, it is possible to use the hardcoded credential in clients username: sapphire, password: ims and gain access to the portal. Once the access is available, the attacker can inject malicious OS commands on “ping”, “traceroute” and “snmp” functions and execute code on the server...

9.8AI score0.02129EPSS
Exploits1References2
NVD
NVD
added 2021/07/19 10:15 p.m.14 views

CVE-2020-5349

Dell EMC Networking S4100 and S5200 Series Switches manufactured prior to February 2020 contain a hardcoded credential vulnerability. A remote unauthenticated malicious user could exploit this vulnerability and gain administrative privileges...

10CVSS0.01234EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/07/19 9:30 p.m.21 views

CVE-2020-5349

Dell EMC Networking S4100 and S5200 Series Switches manufactured prior to February 2020 contain a hardcoded credential vulnerability. A remote unauthenticated malicious user could exploit this vulnerability and gain administrative privileges...

9.8CVSS9.6AI score0.01234EPSS
Exploits0References1
Rows per page
Query Builder