41 matches found
CVE-2016-2357
Milesight IP security cameras through 2016-11-14 have a hardcoded SSL private key under the /etc/config directory...
CVE-2025-63729
An issue was discovered in Syrotech SY-GPON-1110-WDONT SYRO3.7L3.1.02-240517 allowing attackers to exctract the SSL Private Key, CA Certificate, SSL Certificate, and Client Certificates in .pem format in firmware in etc folder...
EUVD-2009-1475
Malware in sbrugna...
EUVD-2015-7821
Malware in sbrugna...
EUVD-2019-5667
Malware in sbrugna...
EUVD-2018-8355
Malware in sbrugna...
EUVD-2017-14298
Malware in sbrugna...
CVE-2019-14482
AdRem NetCrunch 10.6.0.4587 has a hardcoded SSL private key vulnerability in the NetCrunch web client. The same hardcoded SSL private key is used across different customers' installations when no other SSL certificate is installed, which allows remote attackers to defeat cryptographic protection...
CVE-2021-40149
The web server of the E1 Zoom camera through 3.0.0.716 discloses its SSL private key via the root web server directory. In this way an attacker can download the entire key via the /self.key URI...
CVE-2021-40149
The CVE-2021-40149 entry concerns Reolink E1 Zoom Camera versions 3.0.0.716 and earlier, where the embedded RSA private key is disclosed via the web server’s root directory (accessible at /self.key). The nuclei template confirms vulnerability details for E1 Zoom Camera
CVE-2021-40149
The web server of the E1 Zoom camera through 3.0.0.716 discloses its SSL private key via the root web server directory. In this way an attacker can download the entire key via the /self.key URI...
Advantech ADAM-3600
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Advantech Equipment: ADAM-3600 Vulnerability: Use of Hard-coded Cryptographic Key 2. RISK EVALUATION Successful exploitation of this vulnerability could allow unauthorized access to intercept traffic...
CVE-2019-14482
AdRem NetCrunch 10.6.0.4587 is affected by a hardcoded SSL private key vulnerability in the NetCrunch web client. The same hardcoded key is used across different customer installations when no other SSL certificate is installed, allowing remote attackers to defeat cryptographic protections by lev...
CVE-2019-14482
AdRem NetCrunch 10.6.0.4587 has a hardcoded SSL private key vulnerability in the NetCrunch web client. The same hardcoded SSL private key is used across different customers' installations when no other SSL certificate is installed, which allows remote attackers to defeat cryptographic protection...
ZSQL: Configure private SSL key
The database parameters FACTORKEY and LOCALKEY must be updated in time to ensure the security of SSL private key encryption. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
CVE-2016-2357
Milesight IP security cameras through 2016-11-14 have a hardcoded SSL private key under the /etc/config directory...
Hardcoded credentials
Milesight IP security cameras through 2016-11-14 have a hardcoded SSL private key under the /etc/config directory...
CVE-2016-2357
Milesight IP security cameras through 2016-11-14 have a hardcoded SSL private key under the /etc/config directory...
CVE-2019-6648
On version 1.9.0, If DEBUG logging is enable, F5 Container Ingress Service CIS for Kubernetes and Red Hat OpenShift k8s-bigip-ctlr log files may contain BIG-IP secrets such as SSL Private Keys and Private key Passphrases as provided as inputs by an AS3 Declaration...
Hardcoded credentials
Amcrest networked devices use the same hardcoded SSL private key across different customers' installations, which allows remote attackers to defeat cryptographic protection mechanisms by leveraging knowledge of this key from another installation, as demonstrated by...