7556 matches found
CVE-2024-13842
A hardcoded key in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version 22.7R1.3 allows a local authenticated attacker with admin privileges to read sensitive data...
CVE-2024-46436
Hardcoded credentials in Tenda W18E V16.01.0.81625 allows unauthenticated remote attackers to gain root access to the device over the telnet service...
CVE-2024-46429
A hardcoded credentials vulnerability in Tenda W18E V16.01.0.81625 allows unauthenticated remote attackers to access the web management portal using a default guest account with administrative privileges...
Dahua Security Digital Video Recorders Credentials Management Errors (CVE-2013-3612)
Dahua DVR appliances have a hardcoded password for 1 the root account and 2 an unspecified backdoor account, which makes it easier for remote attackers to obtain administrative access via authorization requests involving a ActiveX, b a standalone client, or c unknown other vectors. This plugin on...
CVE-2024-13842
A hardcoded key in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version 22.7R1.3 allows a local authenticated attacker with admin privileges to read sensitive data...
CVE-2024-13842
A hardcoded key in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version 22.7R1.3 allows a local authenticated attacker with admin privileges to read sensitive data...
CVE-2024-28989
SolarWinds Web Help Desk was found to have a hardcoded cryptographic key that could allow the disclosure of sensitive information from the software...
CVE-2024-28989
SolarWinds Web Help Desk was found to have a hardcoded cryptographic key that could allow the disclosure of sensitive information from the software...
PT-2025-6247 · Ivanti · Ivanti Policy Secure +1
Name of the Vulnerable Software and Affected Versions: Ivanti Connect Secure versions prior to 22.7R2.3 Ivanti Policy Secure versions prior to 22.7R1.3 Description: A hardcoded key in the software allows a local authenticated attacker with admin privileges to read sensitive data. Recommendations:...
Billion Electric M100、M150和M120N 信任管理问题漏洞
The Billion Electric M100, among others, is a wireless router from China-based Shengda Electric Billion Electric. The Billion Electric M100, M150, and M120N are vulnerable to a trust management issue vulnerability that stems from embedded Linux credentials that are hardcoded. An attacker could...
CVE-2024-46436
Hardcoded credentials in Tenda W18E V16.01.0.81625 allows unauthenticated remote attackers to gain root access to the device over the telnet service...
CVE-2024-46436
Hardcoded credentials in Tenda W18E V16.01.0.81625 allows unauthenticated remote attackers to gain root access to the device over the telnet service...
CVE-2024-46429
A hardcoded credentials vulnerability in Tenda W18E V16.01.0.81625 allows unauthenticated remote attackers to access the web management portal using a default guest account with administrative privileges...
CVE-2024-46429
A hardcoded credentials vulnerability in Tenda W18E V16.01.0.81625 allows unauthenticated remote attackers to access the web management portal using a default guest account with administrative privileges...
CVE-2024-46429
A hardcoded credentials vulnerability in Tenda W18E V16.01.0.81625 allows unauthenticated remote attackers to access the web management portal using a default guest account with administrative privileges...
CVE-2024-46429
A hardcoded credentials vulnerability in Tenda W18E V16.01.0.81625 allows unauthenticated remote attackers to access the web management portal using a default guest account with administrative privileges...
CVE-2024-46436
CVE-2024-46436 : Affects Tenda W18E device with firmware V16.01.0.8(1625). Public data states hardcoded credentials enable unauthenticated remote attackers to gain root access via the telnet service. This is consistent across multiple sources in the connected set. Root access via telnet constitut...
CVE-2024-46436
Hardcoded credentials in Tenda W18E V16.01.0.81625 allows unauthenticated remote attackers to gain root access to the device over the telnet service...
CVE-2024-46429
CVE-2024-46429 concerns a hardcoded credentials vulnerability in the Tenda W18E web management portal. Affected component: W18E device web interface (V16.01.0.8(1625)). Root cause: presence of a default guest account with administrative privileges that can be used by unauthenticated remote attack...
CVE-2024-46436
Hardcoded credentials in Tenda W18E V16.01.0.81625 allows unauthenticated remote attackers to gain root access to the device over the telnet service...