CVE-2025-10221 Hardcoded Password Exposure in AxxonNet (C-WerkNet) ARP Agent Logs

Insertion of Sensitive Information into Log File CWE-532 in the ARP Agent component in AxxonSoft Axxon One / AxxonNet / C-WerkNet 2.0.4 and earlier on Windows platforms allows a local attacker to obtain plaintext credentials via reading TRACE log files containing serialized JSON with passwords...

SRC-2025-0002 : Samsung MagicINFO 9 Server Hard-coded Credentials Local Privilege Escalation Vulnerability

Vulnerability Details: This vulnerability allows local attackers to escalate privileges on affected installations of Samsung MagicINFO. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists wi...

CVE-2025-51536

Austrian Archaeological Institute AI OpenAtlas v8.11.0 as discovered to contain a hardcoded Administrator password...

CVE-2025-44643

Certain Draytek products are affected by Insecure Configuration. This affects AP903 v1.4.18 and AP912C v1.4.9 and AP918R v1.4.9. The setting of the password property in the ripd.conf configuration file sets a hardcoded weak password, posing a security risk. An attacker with network access could...

CVE-2025-44955

RUCKUS Network Director RND before 4.5 allows jailed users to obtain root access vis a weak, hardcoded password...

CVE-2025-44955

RUCKUS Network Director RND before 4.5 allows jailed users to obtain root access vis a weak, hardcoded password...

CVE-2025-44955

RUCKUS Network Director RND before 4.5 allows jailed users to obtain root access vis a weak, hardcoded password...

CVE-2025-51536

Austrian Archaeological Institute AI OpenAtlas v8.11.0 as discovered to contain a hardcoded Administrator password...

CVE-2025-44643

CVE-2025-44643 affects Draytek AP903 v1.4.18, AP912C v1.4.9, and AP918R v1.4.9 due to an insecure configuration: the ripd.conf password property sets a hardcoded weak password. This could allow a network-attached attacker to gain unauthorized control of the routing daemon and potentially alter ro...

CVE-2025-44955

CVE-2025-44955 affects RUCKUS Network Director (RND) and related Ruckus Wireless management components. Connected PT-Security and Red Hat/CERT references describe multiple flaws in RND/vSZ that can lead to unauthorized admin access, including a hardcoded weak password enabling root” access, and o...

CVE-2025-44955

RUCKUS Network Director RND before 4.5 allows jailed users to obtain root access vis a weak, hardcoded password...

PT-2025-31819 · Openatlas · Openatlas

Name of the Vulnerable Software and Affected Versions: OpenAtlas version 8.11.0 Description: OpenAtlas v8.11.0 contains a hardcoded Administrator password. Recommendations: Change the hardcoded Administrator password...

CVE-2025-44955

RUCKUS Network Director RND before 4.5 allows jailed users to obtain root access vis a weak, hardcoded password...

CVE-2019-19145

Quantum SuperLoader 3 V94.0 005E.0h devices allow attackers to access the hardcoded fa account because there are only 65536 possible passwords...

CVE-2019-19145

Quantum SuperLoader 3 V94.0 005E.0h devices allow attackers to access the hardcoded fa account because there are only 65536 possible passwords...

CVE-2025-4049 Hardcoded SQLite password in FARA

Use of hard-coded, the same among all vulnerable installations SQLite credentials vulnerability in SIGNUM-NET FARA allows to read and manipulate local-stored database.This issue affects FARA: through 5.0.80.34...

CVE-2025-4049 Hardcoded SQLite password in FARA

Use of hard-coded, the same among all vulnerable installations SQLite credentials vulnerability in SIGNUM-NET FARA allows to read and manipulate local-stored database.This issue affects FARA: through 5.0.80.34...

CVE-2025-52363

Tenda CP3 Pro Firmware V22.5.4.93 contains a hardcoded root password hash in the /etc/passwd file and /etc/passwd-. An attacker with access to the firmware image can extract and attempt to crack the root password hash, potentially obtaining administrative access...

CVE-2025-52363

Tenda CP3 Pro Firmware V22.5.4.93 contains a hardcoded root password hash in the /etc/passwd file and /etc/passwd-. An attacker with access to the firmware image can extract and attempt to crack the root password hash, potentially obtaining administrative access...

CVE-2025-52363

Tenda CP3 Pro Firmware V22.5.4.93 contains a hardcoded root password hash in the /etc/passwd file and /etc/passwd-. An attacker with access to the firmware image can extract and attempt to crack the root password hash, potentially obtaining administrative access...