Schneider-electric Quantum Unspecified Vulnerability

The Schneider Electric Quantum Ethernet Module, as used in the Quantum 140NOE771 and 140CPU65 modules, the Premium TSXETY and TSXP57 modules, the M340 BMXNOE01 and BMXP3420 modules, and the STB DIO STBNIC2212 and STBNIP2 modules, uses hardcoded passwords for the 1 AUTCSE, 2 AUTCSE, 3 fdrusers, 4...

Hardcoded credentials

GNUBOARD5 5.3.1.9 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "board tail contents" parameter, aka the adm/boardformupdate.php bocontenttail parameter...

Hardcoded credentials

Technicolor C2000T and C2100T uses hard-coded cryptographic keys...

Cisco Small Business RV320 and RV325 Dual Gigabit WAN Routers Issues

Cisco firmware for Cisco RV320 and RV325 Dual Gigabit WAN VPN Routers is affected by the following issues: Static certificates and keys Hardcoded password hashes Multiple vulnerabilities in third-party software TPS components Static Certificates and Keys Two static X.509 certificates with the...

Cisco Small Business RV016, RV042, RV042G, and RV082 Routers Issues

Cisco firmware for certain Cisco Small Business RV Series Routers is affected by the following issues: Certificate and key issued to QNO Technology Hardcoded password hashes Multiple vulnerabilities in third-party software TPS components Certificate and Key Issued to QNO Technology An X.509...

CVE-2015-7276

CVE-2015-7276 : Affected devices are Technicolor C2000T and C2100T that use hard-coded cryptographic keys. Root cause is hard-coded keys embedded in the devices, which can enable impersonation or man-in-the-middle via captured credentials or certificates. CVSS metrics indicate unauthenticated net...

Milesight IP security cameras trust management issue vulnerability (CNVD-2019-40063)

Milesight IP security cameras are IP camera products from China Pulse Digital Technology Milesight. A security vulnerability exists in Milesight IP security cameras version 2016-11-14 and earlier, which stems from a hardcoded SSL private key stored in the /etc/config directory. No details of the...

Milesight IP security cameras trust management issue vulnerability (CNVD-2019-40064)

Milesight IP security cameras are IP camera products from China Pulse Digital Technology Milesight. A security vulnerability exists in Milesight IP security cameras version 2016-11-14 and earlier, which stems from the program comes with 10 privileged accounts with hardcoded credentials in the...

Mitsubishi Electric smartRTU and Inea ME-RTU Trust Management Issue Vulnerability (CNVD-2019-47031)

Mitsubishi Electric smartRTU is an intelligent Remote Terminal Unit RTU from Mitsubishi Electric, Japan.Inea ME-RTU is an intelligent communication gateway product from Inea, Slovenia. A trust management issue vulnerability exists in Mitsubishi Electric smartRTU version 2.02 and earlier and INEA...

Hardcoded credentials

IBM Security Guardium Big Data Intelligence SonarG 4.0 uses hard coded credentials which could allow a local user to obtain highly sensitive information. IBM X-Force ID: 161035...

Hardcoded credentials

An issue was discovered on Mitsubishi Electric ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. Undocumented hard-coded user passwords for root, ineaadmin, mitsadmin, and maint could allow an attacker to gain unauthorised access to the RTU. Also, the accounts ineaadmin and mitsadm...

Hardcoded credentials

An issue was discovered on Mitsubishi Electric ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. Hard-coded SSH keys allow an attacker to gain unauthorised access or disclose encrypted data on the RTU due to the keys not being regenerated on initial installation or with firmware...

Broadcom Brocade SANnav CVE-2019-16207 Hardcoded Credentials Vulnerability

Description Broadcom Brocade SANnav is prone to a hard-coded credentials vulnerability. An attacker can exploit this issue to gain unauthorized access to the vulnerable system and perform unauthorized actions. Versions prior to Brocade SANnav 2.0 are vulnerable. Technologies Affected Broadcom...

CVE-2016-2357

Milesight IP security cameras through 2016-11-14 have a hardcoded SSL private key under the /etc/config directory...

CVE-2016-2358

Milesight IP security cameras through 2016-11-14 have a default set of 10 privileged accounts with hardcoded credentials. They are accessible if the customer has not configured 10 actual user accounts...

CVE-2016-2358

Milesight IP security cameras through 2016-11-14 have a default set of 10 privileged accounts with hardcoded credentials. They are accessible if the customer has not configured 10 actual user accounts...

Hardcoded credentials

Milesight IP security cameras through 2016-11-14 have a default set of 10 privileged accounts with hardcoded credentials. They are accessible if the customer has not configured 10 actual user accounts...

Hardcoded credentials

Milesight IP security cameras through 2016-11-14 have a hardcoded SSL private key under the /etc/config directory...

CVE-2016-2357

Milesight IP security cameras (up to 2016-11-14) contain a hardcoded SSL private key stored in the /etc/config directory. The root cause is a hardcoded SSL private key, leading to potential compromise of confidentiality, integrity, and availability of TLS communications. The provided documents do...

CVE-2016-2357

Milesight IP security cameras through 2016-11-14 have a hardcoded SSL private key under the /etc/config directory...