7547 matches found
CVE-2014-4752
CVE-2014-4752 affects IBM System Networking Switches and related components with hardcoded, non-changeable credentials in firmware, enabling remote access via unspecified attack vectors. Affected products include IBM Flex System Fabric EN4093/EN4093R 10Gb switches (<7.8.6.0), CN4093, SI4093, E...
Hardcoded credentials
The Vault-Hide SMS, Pics & Videos aka com.netqin.ps application 5.0.14.22 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Amazing exposure Netcore routers exist back door, anyone can be a remote access-vulnerability warning-the black bar safety net
The Trend Micro researchers said yesterday at the official website shows, the Chinese manufacturers produce a series of routers contain a severe vulnerability, the hacker through the loopholes in monitoring user's Internet traffic. Router in China the Brand Name Netcore in foreign countries the...
Hardcoded credentials
The web interface in Schrack Technik microControl with firmware before 1.7.0 937 has a hardcoded password of not for the "user" account, which makes it easier for remote attackers to obtain access via unspecified vectors...
CVE-2014-5396
The web interface in Schrack Technik microControl with firmware before 1.7.0 937 has a hardcoded password of not for the "user" account, which makes it easier for remote attackers to obtain access via unspecified vectors...
CVE-2014-5396
The CVE-2014-5396 issue affects Schrack Technik microControl web interface on firmware versions before 1.7.0 (937). The root cause is a hardcoded password for the user account, enabling remote access via unspecified vectors. The connected sources reiterate the same description; no explicit fix or...
CVE-2014-0326
The Pilot Below Deck Equipment BDE and OpenPort implementations on Iridium satellite terminals allow remote attackers to read hardcoded credentials via the web interface...
CVE-2014-0326
The Pilot Below Deck Equipment BDE and OpenPort implementations on Iridium satellite terminals allow remote attackers to read hardcoded credentials via the web interface...
CVE-2014-0326
CVE-2014-0326 affects Iridium Pilot BDE (Below Deck Equipment) and OpenPort devices, where the web interface exposes hardcoded administrator credentials. The root cause is hardcoded credentials (CWE-798) and an insecure protocol that allows unauthenticated remote access to privileged functions (C...
CVE-2014-2964
Cobham Aviator 700D and 700E satellite terminals have hardcoded passwords for the 1 debug, 2 prod, 3 do160, and 4 flrp programs, which allows physically proximate attackers to gain privileges by sending a password over a serial line...
CVE-2014-2941
Cobham Sailor 6000 satellite terminals have hardcoded Tbus 2 credentials, which allows remote attackers to obtain access via a TBUS2 command. NOTE: the vendor reportedly states "there is no possibility to exploit another user's credentials...
CVE-2014-2940
Cobham Sailor 900 and 6000 satellite terminals with firmware 1.08 MFHF and 2.11 VHF have hardcoded credentials for the administrator account, which allows attackers to obtain administrative control by leveraging physical access or terminal access...
Hardcoded credentials
Cobham Aviator 700D and 700E satellite terminals have hardcoded passwords for the 1 debug, 2 prod, 3 do160, and 4 flrp programs, which allows physically proximate attackers to gain privileges by sending a password over a serial line...
Hardcoded credentials
Cobham Sailor 900 and 6000 satellite terminals with firmware 1.08 MFHF and 2.11 VHF have hardcoded credentials for the administrator account, which allows attackers to obtain administrative control by leveraging physical access or terminal access...
Hardcoded credentials
Cobham Sailor 6000 satellite terminals have hardcoded Tbus 2 credentials, which allows remote attackers to obtain access via a TBUS2 command. NOTE: the vendor reportedly states "there is no possibility to exploit another user's credentials...
CVE-2014-2941
Cobham Sailor 6000 satellite terminals have hardcoded Tbus 2 credentials, which allows remote attackers to obtain access via a TBUS2 command. NOTE: the vendor reportedly states "there is no possibility to exploit another user's credentials...
CVE-2014-2941
Cobham Sailor 6000 satellite terminals are affected by a hardcoded Tbus 2 credential issue. An unauthenticated attacker could send arbitrary TBUS2 commands, potentially impacting terminal operation. The vendor statement disputes credential reuse across users and notes security enhancements in a l...
CVE-2014-2964
Cobham Aviator 700D and 700E satellite terminals have hardcoded passwords for the 1 debug, 2 prod, 3 do160, and 4 flrp programs, which allows physically proximate attackers to gain privileges by sending a password over a serial line...
CVE-2014-2940
CVE-2014-2940 affects Cobham Sailor 900 and 6000 satellite terminals running firmware 1.08 MFHF / 2.11 VHF, where hardcoded administrator credentials are present. The NVD entry notes that an attacker could obtain full administrative control, with exploitation requiring either physical access to t...
CVE-2014-2964
Cobham Aviator 700D/700E satellite terminals expose hardcoded credentials for the maintenance commands (debug, prod, do160, flrp). A local attacker with physical access or maintenance-port connectivity can authenticate via a serial line and potentially gain full control of the terminal. ROOT caus...