CVE-2022-37857

bilde2910 Hauk v1.6.1 requires a hardcoded password which by default is blank. This hardcoded password is hashed but stored within the config.php file server-side as well as in clear-text on the android client device by default...

CVE-2022-37857

CVE-2022-37857 affects bilde2910 Hauk v1.6.1, where a hardcoded default password (blank) is hashed but stored in server-side config.php and also in plaintext on the Android client by default. This creates a persistent credential exposure risk that could enable unauthorized access if the default i...

CVE-2022-37857

bilde2910 Hauk v1.6.1 requires a hardcoded password which by default is blank. This hardcoded password is hashed but stored within the config.php file server-side as well as in clear-text on the android client device by default...

Hauk 信任管理问题漏洞

Hauk is a fully open source, self-hosted location sharing service from the individual developer Marius Lindvall. A security vulnerability exists in Hauk v1.6.1, which stems from hardcoded passwords stored in plaintext in the config.php file on the server side and on the android client device...

PT-2022-24114 · Unknown · Bilde2910 Hauk

Name of the Vulnerable Software and Affected Versions: bilde2910 Hauk version 1.6.1 Description: The issue concerns a hardcoded password in bilde2910 Hauk, which is blank by default. This password is hashed and stored in the config.php file on the server, as well as in clear-text on the Android...