7555 matches found
CVE-2018-17767
Ingenico Telium 2 POS terminals have hardcoded PPP credentials. This is fixed in Telium 2 SDK v9.32.03 patch N...
CVE-2018-17767
Ingenico Telium 2 POS terminals have hardcoded PPP credentials. This is fixed in Telium 2 SDK v9.32.03 patch N...
Hardcoded credentials
Ingenico Telium 2 POS terminals have hardcoded PPP credentials. This is fixed in Telium 2 SDK v9.32.03 patch N...
Hardcoded credentials
Ingenico Telium 2 POS terminals have hardcoded FTP credentials. This is fixed in Telium 2 SDK v9.32.03 patch N...
CVE-2018-17771
Ingenico Telium 2 POS terminals have hardcoded FTP credentials. This is fixed in Telium 2 SDK v9.32.03 patch N...
CVE-2018-17771
The CVE-2018-17771 entry concerns Ingenico Telium 2 POS terminals with hardcoded FTP credentials. The vulnerability affects Telium 2 devices exposing FTP credentials within the product, enabling unauthorized access via FTP when credentials are present. The issue is addressed in Telium 2 SDK v9.32...
CVE-2018-17767
Ingenico Telium 2 POS terminals have hardcoded PPP credentials. This is fixed in Telium 2 SDK v9.32.03 patch N...
CVE-2018-17767
Summary : CVE-2018-17767 affects Ingenico Telium 2 POS terminals due to hardcoded PPP credentials. The connected sources confirm the vulnerability and state the issue is fixed in Telium 2 SDK v9.32.03 patch N. Affected component : Ingenico Telium 2 POS terminals (SDK level). Root cause : hardcode...
PT-2020-8621 · Ingenico · Ingenico Telium 2
Name of the Vulnerable Software and Affected Versions: Ingenico Telium 2 POS terminals versions prior to Telium 2 SDK v9.32.03 patch N Description: The issue concerns hardcoded PPP credentials in Ingenico Telium 2 POS terminals. This allows unauthorized access. The problem is resolved in Telium 2...
PT-2020-8625 · Ingenico · Ingenico Telium 2
Name of the Vulnerable Software and Affected Versions: Ingenico Telium 2 POS terminals versions prior to Telium 2 SDK v9.32.03 patch N Description: The issue concerns hardcoded FTP credentials in Ingenico Telium 2 POS terminals. This allows unauthorized access. The problem is fixed in Telium 2 SD...
Hardcodes - Find Hardcoded Strings From Source Code
hardcodes is a utility for searching strings hardcoded by developers in programs. It uses a modular tokenizer that can handle comments, any number of backslashes & nearly any syntax you throw at it. Yes, it is designed to process any syntax and following languages are officially supported: ada,...
Hardcoded Initialization Vector in parsel
All versions of parsel have a default hardcoded initialization vector. In cases where the IV is not provided, the package defaults to a hardcoded IV which renders the cipher vulnerable to chosen plaintext attacks. Recommendation The package is deprecated and will not be updated. Consider using an...
GHSA-Q643-W9JP-Q2QG Hardcoded Initialization Vector in parsel
All versions of parsel have a default hardcoded initialization vector. In cases where the IV is not provided, the package defaults to a hardcoded IV which renders the cipher vulnerable to chosen plaintext attacks. Recommendation The package is deprecated and will not be updated. Consider using an...
COVR 3902 1.01B0 Hardcoded Credentials Vulnerability
Title: Telnet Hardcoded Credentials Summary: The latest versions of the firmware have hardcoded default credentials that can be exploited by an unauthenticated attacker to gain privileged access to the firmware and to extract sensitive data Affected Firmware: COVR-3902REVAROUTERFIRMWAREv1.01B0 CV...
PT-2020-3947 · D Link · D-Link Covr-2600R +1
Name of the Vulnerable Software and Affected Versions: D-Link COVR-2600R and COVR-3902 Kit versions prior to 1.01b05Beta01 Description: The issue is related to the use of hardcoded credentials for telnet connections, allowing unauthenticated attackers to gain privileged access to the router. This...
GitHub Security Lab: Query to find TLS configurations supporting hardcoded insecure versions of the protocol and cipher suites
This bug was reported directly to GitHub Security Lab...
GHSA-GFM8-G3VM-53JH Malicious Package in leetlog
Versions 0.1.2 and 0.1.3 of leetlog contain malicious code. The package adds an arbitrary hardcoded SSH key identified as hacker@evilmachine to the system's authorizedkeys Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets an...
Hardcoded credentials
Use of a hard-coded cryptographic key in Pancake versions 4.13.29 allows an attacker to forge session cookies, which may lead to remote privilege escalation...
COVR 3902 1.01B0 Hardcoded Credentials
Title: Telnet Hardcoded Credentials Summary: The latest versions of the firmware have hardcoded default credentials that can be exploited by an unauthenticated attacker to gain privileged access to the firmware and to extract sensitive data Affected Firmware: COVR-3902REVAROUTERFIRMWAREv1.01B0 CV...
Hardcoded credentials
THOMSON THT741FTA 2.2.1 and Philips DTR3502BFTA DVB-T2 2.2.1 set-top boxes have their TELNET service hardcoded to start on boot, which allows an attacker on the local network to achieve root access via the TELNET protocol...