CVE-2019-20656

The CVE-2019-20656 issue is a Hardcoded password vulnerability affecting multiple NETGEAR devices (D6200 < 1.1.00.36; D7000 < 1.0.1.74; PR2000 < 1.0.0.30; R6020 < 1.0.0.42; R6080 < 1.0.0.42; R6050 < 1.0.1.24; JR6150 < 1.0.1.24; R6120 < 1.0.0.48; R6220 < 1.1.0.86; R6230 ...

Hardcoded credentials

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Quest Foglight Evolve 9.0.0. Authentication is not required to exploit this vulnerability. The specific flaw exists within the service user account. The product contains a hard-coded password for thi...

CVE-2019-14309

Ricoh SP C250DN 1.05 devices have a fixed password. FTP service credential were found to be hardcoded within the printer firmware. This would allow to an attacker to access and read information stored on the shared FTP folders...

CVE-2020-8000

Intellian Aptus Web 1.24 has a hardcoded password of 12345678 for the intellian account...

CVE-2020-8001

The Intellian Aptus application 1.0.2 for Android has a hardcoded password of intellian for the masteruser FTP account...

CVE-2020-8000

Intellian Aptus Web 1.24 has a hardcoded password of 12345678 for the intellian account...

CVE-2020-8001

The Intellian Aptus application 1.0.2 for Android has a hardcoded password of intellian for the masteruser FTP account...

Hardcoded credentials

The Intellian Aptus application 1.0.2 for Android has a hardcoded password of intellian for the masteruser FTP account...

CVE-2020-8000

Intellian Aptus Web 1.24 contains a hardcoded intellian account password (12345678). This yields a high-severity, network-exposed risk with potential full impact on confidentiality, integrity, and availability per CVSS 3.1/BASE. The connected sources confirm the issue but do not provide remediati...

CVE-2020-8000

Intellian Aptus Web 1.24 has a hardcoded password of 12345678 for the intellian account...

CVE-2020-8001

The CVE-2020-8001 entry concerns the Intellian Aptus Android app (1.0.2) that hardcodes the masteruser FTP password, intellian. This creates a credential exposure allowing unauthorized FTP access within the app’s functionality, consistent with the reported CVSS base metrics (Android app, hardcode...

CVE-2020-8001

The Intellian Aptus application 1.0.2 for Android has a hardcoded password of intellian for the masteruser FTP account...

Cisco Data Center Network Manager serverinfo Hardcoded Password Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Cisco Data Center Network Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of web requests. The system contains a hard-cod...

CVE-2019-19021

TitanHQ WebTitan before 5.18 is affected by an authentication flaw involving a hidden, hard-coded administrator account. The issue enables anyone to log in with this account and obtain administrator privileges through the web administration interface. Root cause details are not elaborated beyond ...

CVE-2019-19033

Jalios JCMS 10 allows attackers to access any part of the website and the WebDAV server with administrative privileges via a backdoor account, by using any username and the hardcoded dev password...

CVE-2019-19033

Jalios JCMS 10 allows attackers to access any part of the website and the WebDAV server with administrative privileges via a backdoor account, by using any username and the hardcoded dev password...

Hardcoded credentials

Brocade SANnav versions before v2.0 use a hard-coded password, which could allow local authenticated attackers to access a back-end database and gain privileges...

Cisco Small Business RV016, RV042, RV042G, and RV082 Routers Issues

Cisco firmware for certain Cisco Small Business RV Series Routers is affected by the following issues: Certificate and key issued to QNO Technology Hardcoded password hashes Multiple vulnerabilities in third-party software TPS components Certificate and Key Issued to QNO Technology An X.509...

Cisco Small Business RV320 and RV325 Dual Gigabit WAN Routers Issues

Cisco firmware for Cisco RV320 and RV325 Dual Gigabit WAN VPN Routers is affected by the following issues: Static certificates and keys Hardcoded password hashes Multiple vulnerabilities in third-party software TPS components Static Certificates and Keys Two static X.509 certificates with the...

CVE-2019-15867

The slick-popup plugin before 1.7.2 for WordPress has a hardcoded OmakPass13 password for the slickpopupteam account, after a Subscriber calls a certain AJAX action...