CVE-2024-28751

CVE-2024-28751 affects ifm electronic Smart PLC AC14xx and AC4xxS (versions 4.3.17 and earlier per CNVD/CVE records). The issue is a trust management vulnerability enabling a remote, high-privilege attacker to enable telnet access with hardcoded credentials. Impact described as remote, unauthenti...

CVE-2024-36526

ZKTeco ZKBio CVSecurity v6.1.1 was discovered to contain a hardcoded cryptographic key...

CVE-2024-36526

ZKTeco ZKBio CVSecurity v6.1.1 was discovered to contain a hardcoded cryptographic key...

CVE-2024-36526

ZKTeco ZKBio CVSecurity v6.1.1 is affected by a hardcoded cryptographic key (CVE-2024-36526). The Red Hat advisory and CNNVD entries corroborate the same issue. The vulnerability stems from a hardcoded key in CVSecurity 6.1.1, enabling high-severity impact per CVSS 3.1 (Critical, with high confid...

PT-2024-37173 · WordPress · Wp2Speed Faster – Optimize Pagespeed Insights Score

Name of the Vulnerable Software and Affected Versions: WP2Speed Faster – Optimize PageSpeed Insights Score 90-100 plugin for WordPress versions up to, and including, 1.0.1 Description: The issue is due to the use of hardcoded credentials to authenticate all incoming API requests. This allows...

PT-2024-27047 · Zkteco · Zkbio Cvsecurity

Name of the Vulnerable Software and Affected Versions: ZKTeco ZKBio CVSecurity version 6.1.1 Description: A hardcoded cryptographic key was discovered in the software. Recommendations: For ZKTeco ZKBio CVSecurity version 6.1.1, consider updating to a newer version that does not contain the...

PT-2024-22560 · Ifm · Smart Plc Ac14Xx Firmware +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: A high privileged remote attacker can enable telnet access that accepts hardcoded credentials. Recommendations: At the moment, there is no information...

mySCADA myPRO Trust Management Issues Vulnerabilities

mySCADA myPRO is a software application. myPRO is a professional HMI/SCADA system designed primarily for the visualization and control of industrial processes. A trust management issue vulnerability exists in versions of mySCADA myPRO prior to 8.31.0 that stems from the use of hardcoded passwords...

CVE-2023-41919

Hardcoded credentials are discovered within the application's source code, creating a potential security risk for unauthorized access...

mySCADA myPRO 安全漏洞

mySCADA myPRO is a software application. myPRO is a professional HMI/SCADA system designed primarily for the visualization and control of industrial processes. A trust management issue vulnerability exists in versions of mySCADA myPRO prior to 8.31.0 that stems from the use of hardcoded passwords...

PT-2024-13010 · Kiloview · P1/P2 +4

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: Hardcoded credentials are discovered within the application's source code, creating a potential security risk for unauthorized access. Recommendations: At the moment, there is no...

CVE-2024-39208

luci-app-lucky v2.8.3 was discovered to contain hardcoded credentials...

CVE-2024-39208

luci-app-lucky v2.8.3 was discovered to contain hardcoded credentials...

PT-2024-28388 · Unknown · Luci-App-Lucky

Name of the Vulnerable Software and Affected Versions: luci-app-lucky version 2.8.3 Description: The issue is related to hardcoded credentials in the software. Recommendations: For luci-app-lucky version 2.8.3, update to a version where the hardcoded credentials issue is resolved, if available. A...

CVE-2024-39208

CVE-2024-39208 affects luci-app-lucky v2.8.3 and stems from hardcoded credentials in the software. Public sources (NVD, Red Hat, CNNVD, CVE listing) assign a high impact with CVSS v3.1 base score 9.8 (Network attack, no user interaction, privileges NONE, scope UNCHANGED; Confidentiality/Integrity...

CVE-2024-39208

luci-app-lucky v2.8.3 was discovered to contain hardcoded credentials...

CVE-2024-33329

A hardcoded privileged ID within Lumisxp v15.0.x to v16.1.x allows attackers to bypass authentication and access internal pages and other sensitive information...

CVE-2024-33329

A hardcoded privileged ID within Lumisxp v15.0.x to v16.1.x allows attackers to bypass authentication and access internal pages and other sensitive information...

CVE-2024-33329

CVE-2024-33329 affects LumisXP versions v15.0.x–v16.1.x. The issue is a hardcoded privileged ID that enables authentication bypass, allowing access to internal pages and sensitive information. Public references (NVD, Red Hat, CNNVD, PacketStorm) corroborate a credential-based bypass vulnerability...

MAL-2024-4281 Malicious code in Be.Vlаanderen.Basisregisters.NisCodeService.HardCodеd (NuGet)

--- -= Per source details. Do not edit below this line.=-...