Vulnerabilities > Use of Hard-coded Credentials

DATE CVE VULNERABILITY TITLE RISK
2024-07-09 CVE-2024-28747 An unauthenticated remote attacker can use the hard-coded credentials to access the SmartSPS devices with high privileges.
network
low complexity
CWE-798
critical
9.8
2024-07-08 CVE-2023-46685 Use of Hard-coded Credentials vulnerability in Level1 Wbr-6013 Firmware Rer4Av3411B2T2Rlev09170623
A hard-coded password vulnerability exists in the telnetd functionality of LevelOne WBR-6013 RER4_A_v3411b_2T2R_LEV_09_170623.
network
low complexity
level1 CWE-798
critical
9.8
2024-06-10 CVE-2024-1228 Use of Hard-coded Credentials vulnerability in Eurosoft Przychodnia
Use of hard-coded password to the patients' database allows an attacker to retrieve sensitive data stored in the database.
network
low complexity
eurosoft CWE-798
critical
9.8
2024-06-10 CVE-2024-3699 Use of Hard-coded Credentials vulnerability in Dreryk Gabinet 7.0.0.0
Use of hard-coded password to the patients' database allows an attacker to retrieve sensitive data stored in the database.
network
low complexity
dreryk CWE-798
critical
9.8
2024-06-10 CVE-2024-3700 Use of Hard-coded Credentials vulnerability in Estomed Simple Care
Use of hard-coded password to the patients' database allows an attacker to retrieve sensitive data stored in the database.
network
low complexity
estomed CWE-798
critical
9.8
2024-05-14 CVE-2024-23473 The SolarWinds Access Rights Manager was found to contain a hard-coded credential authentication bypass vulnerability.
network
low complexity
CWE-798
8.6
2024-04-04 CVE-2024-3272 Use of Hard-coded Credentials vulnerability in Dlink products
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as very critical, has been found in D-Link DNS-320L, DNS-325, DNS-327L and DNS-340L up to 20240403.
network
low complexity
dlink CWE-798
critical
9.8
2024-02-20 CVE-2024-1661 Use of Hard-coded Credentials vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719
A vulnerability classified as problematic was found in Totolink X6000R 9.4.0cu.852_B20230719.
local
low complexity
totolink CWE-798
5.5
2024-02-13 CVE-2024-23816 A vulnerability has been identified in Location Intelligence Perpetual Large (9DE5110-8CA13-1AX0) (All versions < V4.3), Location Intelligence Perpetual Medium (9DE5110-8CA12-1AX0) (All versions < V4.3), Location Intelligence Perpetual Non-Prod (9DE5110-8CA10-1AX0) (All versions < V4.3), Location Intelligence Perpetual Small (9DE5110-8CA11-1AX0) (All versions < V4.3), Location Intelligence SUS Large (9DE5110-8CA13-1BX0) (All versions < V4.3), Location Intelligence SUS Medium (9DE5110-8CA12-1BX0) (All versions < V4.3), Location Intelligence SUS Non-Prod (9DE5110-8CA10-1BX0) (All versions < V4.3), Location Intelligence SUS Small (9DE5110-8CA11-1BX0) (All versions < V4.3).
network
low complexity
CWE-798
critical
9.8
2024-02-10 CVE-2024-22313 Use of Hard-coded Credentials vulnerability in IBM Storage Defender Resiliency Service 2.0
IBM Storage Defender - Resiliency Service 2.0 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.
local
low complexity
ibm CWE-798
7.8