Lucene search
K

7571 matches found

CVE
CVE
added 2023/10/27 12:0 a.m.55 views

CVE-2023-45499

CVE-2023-45499 affects VinChin Backup & Recovery v5.0., v6.0. , v6.7., and v7.0. . Multiple connected sources confirm a hardcoded-credentials flaw in these versions, posing confidentiality, integrity, and availability risks. Red Hat and CNNVD entries corroborate the issue; Rapid7/Metasploit refer...

9.8CVSS9.5AI score0.07887EPSS
Exploits3References4Affected Software1
NVD
NVD
added 2023/10/26 10:15 p.m.16 views

CVE-2018-17558

Hardcoded manufacturer credentials and an OS command injection vulnerability in the /cgi-bin/mft/ directory on ABUS TVIP TVIP20050 LM.1.6.18, TVIP10051 LM.1.6.18, TVIP11050 MG.1.6.03.05, TVIP20550 LM.1.6.18, TVIP10050 LM.1.6.18, TVIP11550 MG.1.6.03, TVIP21050 MG.1.6.03, and TVIP51550 MG.1.6.03...

9.8CVSS9.8AI score0.02507EPSS
Exploits1References2
Prion
Prion
added 2023/10/26 10:15 p.m.13 views

Hardcoded credentials

Hardcoded manufacturer credentials and an OS command injection vulnerability in the /cgi-bin/mft/ directory on ABUS TVIP TVIP20050 LM.1.6.18, TVIP10051 LM.1.6.18, TVIP11050 MG.1.6.03.05, TVIP20550 LM.1.6.18, TVIP10050 LM.1.6.18, TVIP11550 MG.1.6.03, TVIP21050 MG.1.6.03, and TVIP51550 MG.1.6.03...

7.5CVSS9.8AI score0.02507EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/10/26 12:0 a.m.13 views

CVE-2018-17558

Hardcoded manufacturer credentials and an OS command injection vulnerability in the /cgi-bin/mft/ directory on ABUS TVIP TVIP20050 LM.1.6.18, TVIP10051 LM.1.6.18, TVIP11050 MG.1.6.03.05, TVIP20550 LM.1.6.18, TVIP10050 LM.1.6.18, TVIP11550 MG.1.6.03, TVIP21050 MG.1.6.03, and TVIP51550 MG.1.6.03...

8AI score0.02507EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/10/26 12:0 a.m.4 views

PT-2023-10704 · Abus · Tvip11050 +7

Name of the Vulnerable Software and Affected Versions: ABUS TVIP TVIP20050 version LM.1.6.18 ABUS TVIP TVIP10051 version LM.1.6.18 ABUS TVIP TVIP11050 version MG.1.6.03.05 ABUS TVIP TVIP20550 version LM.1.6.18 ABUS TVIP TVIP10050 version LM.1.6.18 ABUS TVIP TVIP11550 version MG.1.6.03 ABUS TVIP...

9.8CVSS7.8AI score0.02507EPSS
Exploits1References7
CVE
CVE
added 2023/10/26 12:0 a.m.51 views

CVE-2018-17558

The CVE-2018-17558 issue affects ABUS TVIP cameras (list includes TVIP20050 LM.1.6.18, TVIP10051 LM.1.6.18, TVIP11050 MG.1.6.03.05, TVIP20550 LM.1.6.18, TVIP10050 LM.1.6.18, TVIP11550 MG.1.6.03, TVIP21050 MG.1.6.03, TVIP51550 MG.1.6.03) where hardcoded manufacturer credentials and an OS command i...

9.8CVSS9.7AI score0.02507EPSS
Exploits1References2Affected Software1
Github Security Blog
Github Security Blog
added 2023/10/25 6:32 p.m.16 views

Sureness uses hardcoded key

Dromara Sureness before v1.0.8 was discovered to use a hardcoded key...

9.8CVSS7AI score0.00808EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2023/10/25 6:32 p.m.2 views

GHSA-3J2F-58RQ-G6P7 Sureness uses hardcoded key

Dromara Sureness before v1.0.8 was discovered to use a hardcoded key...

9.8CVSS5.9AI score0.00808EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2023/10/25 6:17 p.m.3 views

CVE-2023-31581

Dromara Sureness before v1.0.8 was discovered to use a hardcoded key...

9.8CVSS7.3AI score0.00808EPSS
Exploits1References3
NVD
NVD
added 2023/10/25 6:17 p.m.10 views

CVE-2023-31581

Dromara Sureness before v1.0.8 was discovered to use a hardcoded key...

9.8CVSS9.5AI score0.00808EPSS
Exploits1References2
OSV
OSV
added 2023/10/25 6:17 p.m.12 views

CVE-2023-31581

Dromara Sureness before v1.0.8 was discovered to use a hardcoded key...

9.8CVSS7.3AI score
Exploits0References2
Prion
Prion
added 2023/10/25 6:17 p.m.17 views

Hardcoded credentials

EisBaer Scada - CWE-321: Use of Hard-coded Cryptographic Key...

7.5CVSS9.5AI score0.00425EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/10/25 6:17 p.m.17 views

Hardcoded credentials

Dromara Sureness before v1.0.8 was discovered to use a hardcoded key...

7.5CVSS9.4AI score0.00808EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2023/10/25 6:17 p.m.26 views

Hardcoded credentials

The Android Client application, when enrolled to the AppHub server, connects to an MQTT broker to exchange messages and receive commands to execute on the HMI device. The protocol builds on top of MQTT to implement the remote management of the device is encrypted with a hard-coded DES symmetric...

5.8CVSS8.6AI score0.00428EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/10/25 12:0 a.m.4 views

PT-2023-8529 · Vinchin · Vinchin Backup & Recovery

Name of the Vulnerable Software and Affected Versions: VinChin Backup & Recovery versions 5.0. through 7.0. Description: The issue is related to hardcoded credentials in the software. This could allow a remote attacker to impact the confidentiality, integrity, and availability of protected...

9.8CVSS9.2AI score0.07887EPSS
Exploits3References17
Positive Technologies
Positive Technologies
added 2023/10/25 12:0 a.m.5 views

PT-2023-27933 · Google · Android Client

Name of the Vulnerable Software and Affected Versions: Android Client application affected versions not specified Description: The issue allows an unprivileged third-party application to arbitrarily modify the server settings of the Android Client application, causing it to connect to a malicious...

7.8CVSS7.3AI score0.00199EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/10/24 12:0 a.m.9 views

CVE-2023-31581

Dromara Sureness before v1.0.8 was discovered to use a hardcoded key...

7AI score0.00808EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/10/24 12:0 a.m.16 views

CVE-2023-31581

Dromara Sureness before v1.0.8 was discovered to use a hardcoded key...

9.7AI score0.00808EPSS
Exploits1References2
CVE
CVE
added 2023/10/24 12:0 a.m.112 views

CVE-2023-31581

CVE-2023-31581 affects Dromara Sureness prior to v1.0.8, where a hardcoded key is used in JSON Web Token creation and validation. This issue is documented across multiple sources (Red Hat advisory, CVE listings, OSV, GHSA) and is described as a security vulnerability in Sureness before 1.0.8. The...

9.8CVSS9.4AI score0.00808EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/10/24 12:0 a.m.5 views

PT-2023-23397 · Dromara · Dromara Sureness

Name of the Vulnerable Software and Affected Versions: Dromara Sureness versions prior to 1.0.8 Description: The issue is related to the use of a hardcoded key in Dromara Sureness. Recommendations: For versions prior to 1.0.8, update to version 1.0.8 or later to resolve the issue...

9.8CVSS9.2AI score0.00808EPSS
Exploits1References9
Rows per page
Query Builder