Vulnerabilities > Insecure Default Initialization of Resource
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-23 | CVE-2024-0001 | Insecure Default Initialization of Resource vulnerability in Purestorage Purity//Fa A condition exists in FlashArray Purity whereby a local account intended for initial array configuration remains active potentially allowing a malicious actor to gain elevated privileges. | 9.8 |
| 2024-09-13 | CVE-2024-44096 | Insecure Default Initialization of Resource vulnerability in Google Android there is a possible arbitrary read due to an insecure default value. | 4.4 |
| 2024-09-02 | CVE-2024-45313 | Insecure Default Initialization of Resource vulnerability in Overleaf Overleaf is a web-based collaborative LaTeX editor. | 5.4 |
| 2024-08-13 | CVE-2024-6788 | A remote unauthenticated attacker can use the firmware update feature on the LAN interface of the device to reset the password for the predefined, low-privileged user “user-app” to the default password. | 8.6 |
| 2024-07-17 | CVE-2024-31070 | Insecure Default Initialization of Resource vulnerability in Centurysys products Initialization of a resource with an insecure default vulnerability in FutureNet NXR series, VXR series and WXR series provided by Century Systems Co., Ltd. | 9.1 |
| 2024-07-12 | CVE-2024-39916 | Insecure Default Initialization of Resource vulnerability in Fogproject FOG is a free open-source cloning/imaging/rescue suite/inventory management system. | 6.4 |
| 2024-02-06 | CVE-2024-22388 | Insecure Default Initialization of Resource vulnerability in Hidglobal products Certain configuration available in the communication channel for encoders could expose sensitive data when reader configuration cards are programmed. | 7.8 |
| 2024-01-15 | CVE-2024-22207 | Insecure Default Initialization of Resource vulnerability in Smartbear Swagger UI 2.0.0/2.0.1 fastify-swagger-ui is a Fastify plugin for serving Swagger UI. | 5.3 |
| 2023-10-12 | CVE-2023-27516 | Insecure Default Initialization of Resource vulnerability in Softether VPN 4.419782/5.01.9674 An authentication bypass vulnerability exists in the CiRpcAccepted() functionality of SoftEther VPN 4.41-9782-beta and 5.01.9674. | 7.8 |
| 2023-10-10 | CVE-2023-45312 | Insecure Default Initialization of Resource vulnerability in Mtproto MT Proto Proxy In the mtproto_proxy (aka MTProto proxy) component through 0.7.2 for Erlang, a low-privileged remote attacker can access an improperly secured default installation without authenticating and achieve remote command execution ability. | 8.8 |