Vulnerabilities > Insecure Default Initialization of Resource

DATE CVE VULNERABILITY TITLE RISK
2022-08-12 CVE-2022-20342 Insecure Default Initialization of Resource vulnerability in Google Android 13.0
In WiFi, there is a possible disclosure of WiFi password to the end user due to an insecure default value.
local
low complexity
google CWE-1188
3.3
2022-05-12 CVE-2021-33130 Insecure Default Initialization of Resource vulnerability in Intel Realsense ID F450 Firmware
Insecure default variable initialization of Intel(R) RealSense(TM) ID Solution F450 before version 2.6.0.74 may allow an unauthenticated user to potentially enable information disclosure via physical access.
low complexity
intel CWE-1188
4.6
2022-03-30 CVE-2021-39767 Insecure Default Initialization of Resource vulnerability in Google Android 12.1
In miniadb, there is a possible way to get read/write access to recovery system properties due to an insecure default value.
local
low complexity
google CWE-1188
7.8
2022-03-24 CVE-2022-25568 Insecure Default Initialization of Resource vulnerability in Motioneye Project Motioneye
MotionEye v0.42.1 and below allows attackers to access sensitive information via a GET request to /config/list.
network
low complexity
motioneye-project CWE-1188
7.5
2021-12-07 CVE-2021-38759 Insecure Default Initialization of Resource vulnerability in Raspberrypi Raspberry PI OS Lite 5.10
Raspberry Pi OS through 5.10 has the raspberry default password for the pi account.
network
low complexity
raspberrypi CWE-1188
critical
9.8
2021-11-24 CVE-2021-41192 Insecure Default Initialization of Resource vulnerability in Redash
Redash is a package for data visualization and sharing.
network
low complexity
redash CWE-1188
6.5
2021-11-18 CVE-2021-35535 Insecure Default Initialization of Resource vulnerability in Hitachienergy products
Insecure Boot Image vulnerability in Hitachi Energy Relion Relion 670/650/SAM600-IO series allows an attacker who manages to get access to the front network port and to cause a reboot sequences of the device may exploit the vulnerability, where there is a tiny time gap during the booting process where an older version of VxWorks is loaded prior to application firmware booting, could exploit the vulnerability in the older version of VxWorks and cause a denial-of-service on the product.
network
high complexity
hitachienergy CWE-1188
8.1
2021-11-04 CVE-2021-34795 Insecure Default Initialization of Resource vulnerability in Cisco products
Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive Optical Network (PON) Series Switches Optical Network Terminal (ONT) could allow an unauthenticated, remote attacker to perform the following actions: Log in with a default credential if the Telnet protocol is enabled Perform command injection Modify the configuration For more information about these vulnerabilities, see the Details section of this advisory.
network
low complexity
cisco CWE-1188
critical
9.8
2021-10-08 CVE-2021-42109 Insecure Default Initialization of Resource vulnerability in Vitec products
VITEC Exterity IPTV products through 2021-04-30 allow privilege escalation to root.
network
low complexity
vitec CWE-1188
critical
9.8
2021-09-17 CVE-2021-40825 Insecure Default Initialization of Resource vulnerability in Acuitybrands Nlight Eclypse System Controller Firmware
nLight ECLYPSE (nECY) system Controllers running software prior to 1.17.21245.754 contain a default key vulnerability.
network
low complexity
acuitybrands CWE-1188
8.6