CVE-2020-37135

AMSS++ 4.7 contains an authentication bypass vulnerability that allows attackers to access administrative accounts using hardcoded credentials. Attackers can log in with the default admin username and password '1234' to gain unauthorized administrative access to the system...

PT-2026-6818

Name of the Vulnerable Software and Affected Versions AMSS++ version 4.7 Description AMSS++ 4.7 has a flaw that permits unauthorized access to administrative accounts. This is due to the use of hardcoded credentials, specifically the default username 'admin' and password '1234'. Successful...

CVE-2020-28093

On Tenda AC1200 Model AC6 15.03.06.51multi devices, admin, support, user, and nobody have a password of 1234...

Default credentials

On Tenda AC1200 Model AC6 15.03.06.51multi devices, admin, support, user, and nobody have a password of 1234...

CVE-2019-9229

An issue was discovered on AudioCodes Mediant 500L-MSBR, 500-MBSR, M800B-MSBR and 800C-MSBR devices with firmware versions F7.20A to F7.20A.251. An internal interface exposed to the link-local address 169.254.254.253 allows attackers in the local network to access multiple quagga VTYs. Attackers...

CVE-2019-10011

ICS/StaticPages/AddTestUsers.aspx in Jenzabar JICS aka Internet Campus Solution before 2019-02-06 allows remote attackers to create an arbitrary number of accounts with a password of 1234...

CVE-2019-10011

ICS/StaticPages/AddTestUsers.aspx in Jenzabar JICS aka Internet Campus Solution before 2019-02-06 allows remote attackers to create an arbitrary number of accounts with a password of 1234...

Code injection

ICS/StaticPages/AddTestUsers.aspx in Jenzabar JICS aka Internet Campus Solution before 2019-02-06 allows remote attackers to create an arbitrary number of accounts with a password of 1234...

CVE-2018-9149

The Zyxel Multy X AC3000 Tri-Band WiFi System device doesn't use a suitable mechanism to protect the UART. After an attacker dismantles the device and uses a USB-to-UART cable to connect the device, he can use the 1234 password for the root account to login to the system. Furthermore, an attacker...

The vulnerability of D-Link DWR-932B router’s microprogramming software lies in the use of pre-installed accounts, allowing a hacker to gain access to the device with root privileges.

The vulnerability of the D-Link DWR-932B router’s microprogramming software lies in the use of pre-set accounts “admin” and “root”, with passwords “admin” and “1234” respectively. Exploiting this vulnerability allows a malicious actor to gain access to the device with root privileges via Telnet o...

The vulnerability of Zyxel Wi-Fi transponders lies in the use of pre-set credentials, which allows attackers to intercept DNS requests.

The vulnerability of the Zyxel Wi-Fi signal relay stems from the use of pre-set account credentials “root” and “admin” default password: 1234 during Telnet protocol connections. Exploiting this vulnerability allows a remote attacker to intercept DNS requests by reconfiguring the built-in...

Zyxel WRE6505 DNS Hijacking Vulnerability

The Zyxel WRE6505 is a wireless AC750 range extender. The Zyxel WRE6505 device's root and admin accounts use the default TELNET password of 1234, resulting in easier DNS hijacking attacks by remote attackers by reconfiguring the built-in dnshijacker process...

CVE-2016-10177

An issue was discovered on the D-Link DWR-932B router. Undocumented TELNET and SSH services provide logins to admin with the password admin and root with the password 1234...