7573 matches found
CVE-2022-36610
TOTOLINK A720R V4.1.5cu.532B20210610 was discovered to contain a hardcoded password for root at /etc/shadow.sample...
PT-2022-23505 · Totolink · Totolink A800R
Name of the Vulnerable Software and Affected Versions: TOTOLINK A800R version 4.1.2cu.5137 B20200730 Description: The issue concerns a hardcoded password for the root user located at /etc/shadow.sample. This could potentially allow unauthorized access to the system. Recommendations: For TOTOLINK...
PT-2022-23508 · Totolink · Totolink A860R
Name of the Vulnerable Software and Affected Versions: TOTOLINK A860R version 4.1.2cu.5182 B20201027 Description: The issue concerns a hardcoded password for the root user located at /etc/shadow.sample. This could potentially allow unauthorized access to the system. Recommendations: For TOTOLINK...
PT-2022-23504 · Totolink · Totolink A720R
Name of the Vulnerable Software and Affected Versions: TOTOLINK A720R version 4.1.5cu.532 B20210610 Description: The issue concerns a hardcoded password for the root user located at /etc/shadow.sample. This could potentially allow unauthorized access to the system. Recommendations: For TOTOLINK...
TOTOLINK A3000RU 信任管理问题漏洞
The TOTOLINK A3000Ru is a wireless router from China's Gion Electronics TOTOLINK. A security vulnerability exists in the TOTOLINK A3000RU version V4.1.2cu.5185B20201128, which originates from the inclusion of a hardcoded root password in /etc/shadow.sample...
TOTOLINK A860R 信任管理问题漏洞
The TOTOLINK A860R is a wireless router from China's Gion Electronics TOTOLINK. A security vulnerability exists in the TOTOLINK A860R version V4.1.2cu.5182B20201027, which originates from the inclusion of a hardcoded root password in /etc/shadow.sample...
TOTOLINK A810R 信任管理问题漏洞
The TOTOLINK A810R is a wireless dual-band router from China's Gion Electronics TOTOLINK. A security vulnerability exists in TOTOLINK A810R versions V4.1.2cu.5182B20201026 and V5.9c.4050B20190424, which originates from the inclusion of a hardcoded root password in /etc/shadow.sample...
PT-2022-4464 · Totolink · Totolink A810R
Name of the Vulnerable Software and Affected Versions: TOTOLINK A810R versions V4.1.2cu.5182 B20201026 through V5.9c.4050 B20190424 Description: The issue is related to a hardcoded password for the root user at /etc/shadow.sample. This could allow a remote attacker to elevate their privileges. Th...
PT-2022-23509 · Totolink · Totolink A3000Ru
Name of the Vulnerable Software and Affected Versions: TOTOLINK A3000RU version 4.1.2cu.5185 B20201128 Description: A hardcoded password for the root user was found in the /etc/shadow.sample file. This issue allows unauthorized access to the device. Recommendations: For TOTOLINK A3000RU version...
TOTOLINK A800R 信任管理问题漏洞
The TOTOLINK A800R is a wireless router from China's Gion Electronics TOTOLINK. A security vulnerability exists in the TOTOLINK A800R version V4.1.2cu.5137B20200730, which originates from the inclusion of a hardcoded password for root in /etc/shadow.sample...
PT-2022-23506 · Totolink · Totolink A950Rg
Name of the Vulnerable Software and Affected Versions: TOTOLINK A950RG version 4.1.2cu.5204 B20210112 Description: The issue concerns a hardcoded password for the root user located at /etc/shadow.sample. This could potentially allow unauthorized access to the system. Recommendations: For TOTOLINK...
PT-2022-23507 · Totolink · Totolink N600R
Name of the Vulnerable Software and Affected Versions: TOTOLINK N600R version 4.3.0cu.7647 B20210106 Description: The issue concerns a hardcoded password for the root user located at /etc/shadow.sample. This could potentially allow unauthorized access to the system. Recommendations: For TOTOLINK...
CVE-2022-36170
MapGIS 10.5 Pro IGServer has hardcoded credentials in the front-end and can lead to escalation of privileges and arbitrary file deletion...
CVE-2022-36170
MapGIS 10.5 Pro IGServer has hardcoded credentials in the front-end and can lead to escalation of privileges and arbitrary file deletion...
CVE-2022-36170
MapGIS 10.5 Pro IGServer has hardcoded credentials in the front-end and can lead to escalation of privileges and arbitrary file deletion...
Hardcoded credentials
MapGIS 10.5 Pro IGServer has hardcoded credentials in the front-end and can lead to escalation of privileges and arbitrary file deletion...
CVE-2022-36170
MapGIS 10.5 Pro IGServer has hardcoded credentials in the front-end and can lead to escalation of privileges and arbitrary file deletion...
CVE-2022-36170
MapGIS 10.5 Pro IGServer is affected by CVE-2022-36170 due to hardcoded credentials in the front-end, enabling privilege escalation and arbitrary file deletion. The NVD record lists CVSS 3.1 base score 8.8 (Network, Low attack complexity, Privileges required: Low, User interaction: None, Scope: U...
Use of Hard-coded Credentials in AgileConfig.Client
Hardcoded JWT Secret in AgileConfig 1.6.8 Server allows remote attackers to use the generated JWT token to gain administrator access...
PT-2022-23241 · Unknown · Mapgis 10.5 Pro Igserver
Name of the Vulnerable Software and Affected Versions: MapGIS 10.5 Pro IGServer version 10.5 Description: The issue is related to hardcoded credentials in the front-end of the software, which can lead to escalation of privileges and arbitrary file deletion. Recommendations: For MapGIS 10.5 Pro...