7579 matches found
CVE-2022-46637
CVE-2022-46637 concerns the ProLink router PRS1841, which is reported to contain hardcoded credentials for Telnet and FTP, enabling unauthorized access. The CVE entry cites a CRITICAL 9.8 CVSS score (Network vector, low complexity, no user interaction) with high impact on confidentiality, integri...
CVE-2022-46637
Prolink router PRS1841 was discovered to contain hardcoded credentials for its Telnet and FTP services...
CVE-2022-46637
Prolink router PRS1841 was discovered to contain hardcoded credentials for its Telnet and FTP services...
SUSE CVE-2015-2907
Mobile Devices aka MDI C4 OBD-II dongles with firmware 2.x and 3.4.x, as used in Metromile Pulse and other products, have hardcoded SSH credentials, which makes it easier for remote attackers to obtain access by leveraging knowledge of the required username and password...
SUSE CVE-2016-9013
Django 1.8.x before 1.8.16, 1.9.x before 1.9.11, and 1.10.x before 1.10.3 use a hardcoded password for a temporary database user created when running tests with an Oracle database, which makes it easier for remote attackers to obtain access to the database server by leveraging failure to manually...
SUSE CVE-2017-16844
Heap-based buffer overflow in the loadbuf function in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted e-mail message because of a hardcoded realloc size, a different vulnerability than...
SUSE CVE-2018-7441
Leptonica through 1.75.3 uses hardcoded /tmp pathnames, which might allow local users to overwrite arbitrary files or have unspecified other impact by creating files in advance or winning a race condition, as demonstrated by /tmp/junksplitimage.ps in prog/splitimage2pdf.c...
Hardcoded credentials
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.0 before 15.6.7, all versions starting from 15.7 before 15.7.6, all versions starting from 15.8 before 15.8.1. It was possible to trigger a DoS attack by uploading a malicious Helm chart...
Hardcoded credentials
A vulnerability was found in Deye/Revolt/Bosswerk Inverter MW315U54061.47/MW315U54061.471. It has been rated as problematic. This issue affects some unknown processing of the component Access Point Setting Handler. The manipulation with the input 12345678 leads to use of hard-coded password. It i...
PT-2023-2627 · Ruckus Wireless · Ruckus Wireless Admin
Name of the Vulnerable Software and Affected Versions: Ruckus Wireless Admin versions prior to 10.4 Description: The issue concerns a Remote Code Execution vulnerability in Ruckus Wireless Admin, allowing an unauthenticated attacker to execute arbitrary code via an HTTP GET request. This can be...
CVE-2022-34449
PowerPath Management Appliance with versions 3.3 & 3.2 contains a Hardcoded Cryptographic Keys vulnerability. Authenticated admin users can exploit the issue that leads to view and modifying sensitive information stored in the application...
Hardcoded credentials
PowerPath Management Appliance with versions 3.3 & 3.2 contains a Hardcoded Cryptographic Keys vulnerability. Authenticated admin users can exploit the issue that leads to view and modifying sensitive information stored in the application...
CVE-2022-34449
PowerPath Management Appliance with versions 3.3 & 3.2 contains a Hardcoded Cryptographic Keys vulnerability. Authenticated admin users can exploit the issue that leads to view and modifying sensitive information stored in the application...
CVE-2022-34449
PowerPath Management Appliance (Dell) versions 3.3 and 3.2* are affected by a Hardcoded Cryptographic Keys vulnerability. The issue enables authenticated admin users to view and modify sensitive information stored in the application due to hardcoded keys. Documented impact includes exposure of co...
CVE-2022-34449
PowerPath Management Appliance with versions 3.3 & 3.2 contains a Hardcoded Cryptographic Keys vulnerability. Authenticated admin users can exploit the issue that leads to view and modifying sensitive information stored in the application...
CVE-2022-45766
Hardcoded credentials in Global Facilities Management Software GFMS Version 3 software distributed by Key Systems Management permits remote attackers to impact availability, confidentiality, accessibility and dependability of electronic key boxes...
Hardcoded credentials
Hardcoded credentials in Global Facilities Management Software GFMS Version 3 software distributed by Key Systems Management permits remote attackers to impact availability, confidentiality, accessibility and dependability of electronic key boxes...
CVE-2022-45766
The CVE-2022-45766 entry concerns Key Systems Management’s GFMS software, version 3. It states that hardcoded credentials exist in GFMS v3, which could allow remote attackers to impact the availability, confidentiality, accessibility and dependability of electronic key boxes. The provided referen...
CVE-2022-45766
Hardcoded credentials in Global Facilities Management Software GFMS Version 3 software distributed by Key Systems Management permits remote attackers to impact availability, confidentiality, accessibility and dependability of electronic key boxes...
PT-2023-13409 · Dell · Powerpath Management Appliance
Name of the Vulnerable Software and Affected Versions: PowerPath Management Appliance versions 3.2 through 3.3 Description: The issue allows authenticated admin users to exploit a Hardcoded Cryptographic Keys problem, leading to the ability to view and modify sensitive information stored in the...