CVE-2024-37644

TRENDnet TEW-814DAP v1FW1.01B01 was discovered to contain a hardcoded password vulnerability in /etc/shadow.sample, which allows attackers to log in as root...

CVE-2024-37644

TRENDnet TEW-814DAP v1FW1.01B01 was discovered to contain a hardcoded password vulnerability in /etc/shadow.sample, which allows attackers to log in as root...

PT-2024-21701 · Toshiba Tec · Toshiba Tec E-Studio Multi-Function Peripheral

Name of the Vulnerable Software and Affected Versions: Product Name affected versions not specified Description: The issue involves hardcoded keys used for authentication to an internal API. If an attacker obtains these private keys, they may bypass authentication and access administrative...

PT-2024-21693 · Toshiba · Toshiba Printers

Name of the Vulnerable Software and Affected Versions: Toshiba printers affected versions not specified Description: The issue concerns a shell script in Toshiba printers that uses a hardcoded key for log encryption. An attacker can exploit this by decrypting the encrypted files using the hardcod...

PT-2024-27697 · Trendnet · Trendnet Tew-814Dap

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-814DAP version 1 FW1.01B01 Description: The issue allows attackers to log in as root due to a hardcoded password vulnerability found in /etc/shadow.sample. This enables unauthorized access to the system. Recommendations: For...

PT-2024-21691 · Toshiba · Toshiba Printers

Name of the Vulnerable Software and Affected Versions: Toshiba printers affected versions not specified Description: The issue concerns a shell script in Toshiba printers that uses a hardcoded key for log encryption. An attacker can exploit this by decrypting the encrypted files using the hardcod...

CVE-2024-34539

Hardcoded credentials in TerraMaster TOS firmware through 5.1 allow a remote attacker to successfully login to the mail or webmail server. These credentials can also be used to login to the administration panel and to perform privileged actions...

PT-2024-21694 · Toshiba · Toshiba Printers

Name of the Vulnerable Software and Affected Versions: Toshiba printers affected versions not specified Description: The issue concerns Toshiba printers that have programs containing a hardcoded key used for file encryption. An attacker can exploit this by using the hardcoded key to decrypt...

CVE-2024-34539

CVE-2024-34539 describes hardcoded credentials in TerraMaster TOS firmware up to v5.1, enabling remote login to the mail/webmail server and to the administration panel, with privilege actions possible. Remediation noted in connected sources: upgrade to firmware that removes hardcoded credentials ...

PT-2024-25958 · Terramaster · Terramaster Tos

Name of the Vulnerable Software and Affected Versions: TerraMaster TOS firmware versions through 5.1 Description: The issue concerns hardcoded credentials in the firmware, allowing a remote attacker to login to the mail or webmail server. These credentials can also be used to access the...

PT-2024-21697 · Toshiba · Toshiba Printers

Name of the Vulnerable Software and Affected Versions: Toshiba printers affected versions not specified Description: The issue concerns hardcoded credentials in Toshiba printers. There is no information provided about the estimated number of potentially affected devices worldwide or details about...

PT-2024-21690 · Toshiba · Toshiba Printers

Name of the Vulnerable Software and Affected Versions: Toshiba printers affected versions not specified Description: The issue concerns a hardcoded root password shared among all Toshiba printers. There is no information provided about the estimated number of potentially affected devices worldwid...

CVE-2024-37644

CVE-2024-37644 affects TRENDnet TEW-814DAP v1 (FW1.01B01). A hardcoded password in /etc/shadow.sample enables root login. CVSS v3.1: 8.8 (Network, HIGH impact across Confidentiality, Integrity, Availability). No remediation details are provided in the connected documents; exploitation status is n...

CVE-2024-37630

D-Link DIR-605L v2.13B01 was discovered to contain a hardcoded password vulnerability in /etc/passwd, which allows attackers to log in as root...

CVE-2024-37630

D-Link DIR-605L v2.13B01 was discovered to contain a hardcoded password vulnerability in /etc/passwd, which allows attackers to log in as root...

PT-2024-4264 · D Link · D-Link Dir-605L

Name of the Vulnerable Software and Affected Versions: D-Link DIR-605L version 2.13B01 Description: A hardcoded password vulnerability was discovered in the /etc/passwd component of the D-Link DIR-605L router's firmware. This issue allows attackers to log in as root, potentially granting them ful...

CVE-2024-37630

D-Link DIR-605L v2.13B01 was discovered to contain a hardcoded password vulnerability in /etc/passwd, which allows attackers to log in as root...

CVE-2024-37630

The CVE-2024-37630 affects D-Link DIR-605L v2.13B01 (firmware). A hardcoded password in /etc/passwd allows an attacker to log in as root and obtain administrator privileges. Public documents consistently describe root-level compromise; no explicit firmware fix version is provided. PT-Security not...

CVE-2024-37630

D-Link DIR-605L v2.13B01 was discovered to contain a hardcoded password vulnerability in /etc/passwd, which allows attackers to log in as root...

The vulnerability of the software recovery and backup console of Veeam Recovery Orchestrator allows a perpetrator to escalate their privileges.

The vulnerability of the software recovery and backup console of Veeam Recovery Orchestrator lies in the use of rigidly encoded credentials. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain increased privileges...