Zyxel MAX3XX Series Wimax CPEs Hardcoded Root Password

Vulnerability Title: Hardcoded root password in Zyxel MAX3XX series Wimax CPEs Date: 23/03/2016 Product: Zyxel MAX3XX series CPEs Vendor: www.zyxel.com Affected Firmware: Latest version at the time of disclosure v 2.00 and below tested Patch: Unpatched Vendor contact date: 12/12/2015 Authored by:...

Hardcoded credentials

The SysPlant.sys driver in the Application and Device Control ADC component in the client in Symantec Endpoint Protection SEP 12.1 before RU6-MP4 allows remote attackers to execute arbitrary code via a crafted HTML document, related to "RWX Permissions."...

楽天市場　ショッピングアプリ　いつでも毎日ポイント7倍！ - Customized SSL, Exported ContentProvider, Hardcoded secrets vulnerabilities

HackApp vulnerability scanner discovered that application 楽天市場 ショッピングアプリ いつでも毎日ポイント7倍！ published at the 'play' market has multiple vulnerabilities...

Hardcoded credentials

Cisco NX-OS 6.02U61 through 6.02U65 on Nexus 3000 devices and 6.02A61 through 6.02A65 and 6.02A71 on Nexus 3500 devices has hardcoded credentials, which allows remote attackers to obtain root privileges via a 1 TELNET or 2 SSH session, aka Bug ID CSCuy25800...

CVE-2016-1329

Cisco NX-OS 6.02U61 through 6.02U65 on Nexus 3000 devices and 6.02A61 through 6.02A65 and 6.02A71 on Nexus 3500 devices has hardcoded credentials, which allows remote attackers to obtain root privileges via a 1 TELNET or 2 SSH session, aka Bug ID CSCuy25800...

CVE-2016-1329

Cisco NX-OS 6.02U61 through 6.02U65 on Nexus 3000 devices and 6.02A61 through 6.02A65 and 6.02A71 on Nexus 3500 devices has hardcoded credentials, which allows remote attackers to obtain root privileges via a 1 TELNET or 2 SSH session, aka Bug ID CSCuy25800...

CVE-2016-1329

Cisco NX-OS 6.02U61 through 6.02U65 on Nexus 3000 devices and 6.02A61 through 6.02A65 and 6.02A71 on Nexus 3500 devices has hardcoded credentials, which allows remote attackers to obtain root privileges via a 1 TELNET or 2 SSH session, aka Bug ID CSCuy25800...

CVE-2016-1329

CVE-2016-1329 affects Cisco NX-OS on Nexus 3000 (6.0(2)U6(1)–6.0(2)U6(5)) and Nexus 3500 (6.0(2)A6(1)–6.0(2)A6(5), 6.0(2)A7(1)). The root cause is hardcoded/default credentials present in an account created at installation, allowing unauthenticated remote attackers to obtain root privileges via T...

CVE-2015-7261

The FTP service in QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, has hardcoded credentials, which makes it easier for remote attackers to obtain access via a session on TCP port 21...

Hardcoded credentials

The FTP service in QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, has hardcoded credentials, which makes it easier for remote attackers to obtain access via a session on TCP port 21...

CVE-2015-7261

The FTP service in QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, has hardcoded credentials, which makes it easier for remote attackers to obtain access via a session on TCP port 21...

CVE-2015-7261

CVE-2015-7261 affects QNAP iArtist Lite before 1.4.54 (bundled with Signage Station before 2.0.1). The FTP service contains hardcoded credentials, enabling remote access via TCP port 21. Root cause is hard-coded FTP accounts/passwords in iArtist Lite used by Signage Station; impact is unauthorize...

Hardcoded credentials

Zhuhai RaySharp firmware has a hardcoded root password, which makes it easier for remote attackers to obtain access via a session on TCP port 23 or 9000...

CVE-2015-8286

Zhuhai RaySharp firmware has a hardcoded root password, which makes it easier for remote attackers to obtain access via a session on TCP port 23 or 9000...

CVE-2015-8286

CVE-2015-8286 describes hard-coded root credentials in Zhuhai RaySharp firmware powering several DVR/NVR devices. Affected components include DVR firmware derived from RaySharp; exploitation enables unauthenticated remote root access via services on TCP ports such as 23 (telnet) or 9000. Connecte...

CVE-2015-8286

Zhuhai RaySharp firmware has a hardcoded root password, which makes it easier for remote attackers to obtain access via a session on TCP port 23 or 9000...

Yellow Minion Face Maker - Base64 encoded String, Exported ContentProvider, Hardcoded secrets vulnerabilities

HackApp vulnerability scanner discovered that application Yellow Minion Face Maker published at the 'play' market has multiple vulnerabilities...

Servision HVG Hardcoded Credentials

Hello... Over a year ago I disclosed several vulnerabilities in Servision HVG network video recording devices. CVE-2015-0929 and CVE-2015-0930. https://www.kb.cert.org/vuls/id/522460 Since it's been a while now, and hardcoded backdoor passwords in "security" devices are the current hotness...

CVE-2016-2230

OpenELEC and RasPlex devices have a hardcoded password for the root account, which makes it easier for remote attackers to obtain access via an SSH session...

Hardcoded credentials

OpenELEC and RasPlex devices have a hardcoded password for the root account, which makes it easier for remote attackers to obtain access via an SSH session...