CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7555 matches found

Vulnrichment•added 2025/03/05 12:0 a.m.•5 views

CVE-2025-27638

Vasion Print formerly PrinterLogic before Virtual Appliance Host 22.0.1002 Application 20.0.2614 allows Hardcoded Password V-2024-013...

9.4AI score0.00832EPSS

Exploits1References2

CVE•added 2025/03/05 12:0 a.m.•73 views

CVE-2025-27674

CVE-2025-27674 affects Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.843 and Application 20.0.1923, with a root cause described as a hardcoded IdP key (V-2023-006). This存在 vulnerability is associated with authentication-related weakness in the identity provider integra...

9.8CVSS7.2AI score0.00653EPSS

Exploits1References3Affected Software2

Tenable Nessus•added 2025/03/04 12:0 a.m.•3 views

Westermo EDW-100 Use of Hard-Coded Password (CVE-2024-36080)

Westermo EDW-100 has a hidden administrator account with a hardcoded password. In the firmware package, in 'image.bin', the username root and the password for this account are both hard-coded and exposed as strings that can trivially be extracted. Currently there is no way to change this password...

9.8CVSS5.5AI score0.00551EPSS

Exploits0References3

RedhatCVE•added 2025/03/02 12:22 a.m.•6 views

CVE-2025-25428

TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...

8CVSS7.4AI score0.00338EPSS

Exploits1References1

RedhatCVE•added 2025/03/01 12:26 a.m.•28 views

CVE-2025-25729

An information disclosure vulnerability in Bosscomm IF740 Firmware versions:11001.7078 & v11001.0000 and System versions: 6.25 & 6.00 allows attackers to obtain hardcoded cleartext credentials via the update or boot process...

7.5CVSS5.9AI score0.00351EPSS

Exploits0References1

RedhatCVE•added 2025/03/01 12:26 a.m.•6 views

CVE-2025-25570

Vue Vben Admin 2.10.1 allows unauthorized login to the backend due to an issue with hardcoded credentials...

9.8CVSS6.8AI score0.01999EPSS

Exploits0References1

OSV•added 2025/02/28 7:15 p.m.•2 views

CVE-2025-25428

TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...

8CVSS5.8AI score0.00338EPSS

Exploits1References1

NVD•added 2025/02/28 7:15 p.m.•9 views

CVE-2025-25428

TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...

8CVSS0.00338EPSS

Exploits1References1

RedhatCVE•added 2025/02/28 12:25 a.m.•15 views

CVE-2024-50688

SunGrow iSolarCloud Android application V2.1.6.20241017 and prior contains hardcoded credentials. The application regardless of the user account and the cloud uses the same MQTT credentials for exchanging the device telemetry...

9.8CVSS6.9AI score0.00474EPSS

Exploits0References3

RedhatCVE•added 2025/02/28 12:21 a.m.•11 views

CVE-2024-57040

TP-Link TL-WR845N devices with firmware TL-WR845NUNV4200909 and TL-WR845NUNV4190219 was discovered to contain a hardcoded password for the root account which can be obtained by analyzing downloaded firmware or via a brute force attack through physical access to the router. NOTE: The supplier has...

9.8CVSS7.5AI score0.0105EPSS

Exploits1References1

Cvelist•added 2025/02/28 12:0 a.m.•9 views

CVE-2025-25428

TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...

0.00338EPSS

Exploits1References1

Vulnrichment•added 2025/02/28 12:0 a.m.•7 views

CVE-2025-25428

TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...

7.9AI score0.00338EPSS

Exploits1References1

CVE•added 2025/02/28 12:0 a.m.•102 views

CVE-2025-25428

CVE-2025-25428 affects the TRENDnet TEW-929DRU router (firmware 1.0.0.10). The vulnerability is a hardcoded password stored in /etc/shadow, which allows an attacker to log in as root. The NVD and related records rate the impact as high (CVSS 3.1: AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H). Affected fir...

8CVSS7.5AI score0.00338EPSS

Exploits1References1Affected Software1

NVD•added 2025/02/27 10:15 p.m.•9 views

CVE-2025-25570

Vue Vben Admin 2.10.1 allows unauthorized login to the backend due to an issue with hardcoded credentials...

9.8CVSS0.01999EPSS

Exploits0References1

CVE•added 2025/02/27 12:0 a.m.•59 views

CVE-2025-25570

CVE-2025-25570 affects Vue Vben Admin 2.10.1, with a broken authentication flaw caused by hardcoded credentials that allows unauthorized login to the backend. The Nuclei template explicitly documents a default-credentials scenario and the Red Hat/NVD entries reiterate unauthorized backend access ...

9.8CVSS6.5AI score0.01999EPSS

Exploits0References1

Vulnrichment•added 2025/02/27 12:0 a.m.•6 views

CVE-2025-25570

Vue Vben Admin 2.10.1 allows unauthorized login to the backend due to an issue with hardcoded credentials...

9.4AI score0.01999EPSS

Exploits0References1

Cvelist•added 2025/02/27 12:0 a.m.•12 views

CVE-2025-25729

0.00351EPSS

Exploits0References1

Positive Technologies•added 2025/02/27 12:0 a.m.•4 views

PT-2025-9029

Name of the Vulnerable Software and Affected Versions Vue Vben Admin version 2.10.1 Description The issue allows unauthorized login to the backend due to an problem with hardcoded credentials. Recommendations For Vue Vben Admin version 2.10.1, update to a version that removes the hardcoded...

9.8CVSS8.8AI score0.01999EPSS

Exploits0References8

Cvelist•added 2025/02/27 12:0 a.m.•254 views

CVE-2025-25570

Vue Vben Admin 2.10.1 allows unauthorized login to the backend due to an issue with hardcoded credentials...

0.01999EPSS

Exploits0References1

Vulnrichment•added 2025/02/27 12:0 a.m.•5 views

CVE-2025-25729

7.2AI score0.00351EPSS

Exploits0References1

Rows per page