Vulnerabilities > Use of Hard-coded Credentials

DATE CVE VULNERABILITY TITLE RISK
2023-01-26 CVE-2023-24022 Use of Hard-coded Credentials vulnerability in Baicells RTD Firmware and RTS Firmware
Baicells Nova 227, Nova 233, and Nova 243 LTE TDD eNodeB devices with firmware through RTS/RTD 3.7.11.3 have hardcoded credentials that are easily discovered and can be used by remote attackers to authenticate via ssh.
network
low complexity
baicells CWE-798
critical
9.8
2023-01-20 CVE-2023-20038 Use of Hard-coded Credentials vulnerability in Cisco Industrial Network Director
A vulnerability in the monitoring application of Cisco Industrial Network Director could allow an authenticated, local attacker to access a static secret key used to store both local data and credentials for accessing remote systems.
local
low complexity
cisco CWE-798
8.8
2023-01-18 CVE-2022-34442 Use of Hard-coded Credentials vulnerability in Dell EMC Secure Connect Gateway Policy Manager 5.10.00.00/5.12.00.00
Dell EMC SCG Policy Manager, versions from 5.10 to 5.12, contain(s) a contain a Hard-coded Cryptographic Key vulnerability.
network
low complexity
dell CWE-798
critical
9.8
2023-01-18 CVE-2022-34462 Use of Hard-coded Credentials vulnerability in Dell EMC Secure Connect Gateway Policy Manager 5.10.00.00/5.12.00.00
Dell EMC SCG Policy Manager, versions from 5.10 to 5.12, contain(s) a Hard-coded Password Vulnerability.
local
low complexity
dell CWE-798
7.8
2023-01-18 CVE-2022-45444 Use of Hard-coded Credentials vulnerability in Sewio Real-Time Location System Studio
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 contains hard-coded passwords for select users in the application’s database.
network
low complexity
sewio CWE-798
critical
9.8
2023-01-14 CVE-2023-22495 Use of Hard-coded Credentials vulnerability in Maif Izanami
Izanami is a shared configuration service well-suited for micro-service architecture implementation.
network
low complexity
maif CWE-798
critical
9.8
2023-01-12 CVE-2022-39185 Use of Hard-coded Credentials vulnerability in Exfo Bv-10 Firmware
EXFO - BV-10 Performance Endpoint Unit Undocumented privileged user.
network
low complexity
exfo CWE-798
critical
9.8
2023-01-11 CVE-2022-34441 Use of Hard-coded Credentials vulnerability in Dell EMC Secure Connect Gateway Policy Manager 5.10.00.00/5.12.00.00
Dell EMC SCG Policy Manager, versions from 5.10 to 5.12, contain(s) a contain a Hard-coded Cryptographic Key vulnerability.
network
low complexity
dell CWE-798
critical
9.8
2023-01-11 CVE-2022-34440 Use of Hard-coded Credentials vulnerability in Dell EMC Secure Connect Gateway Policy Manager 5.10.00.00/5.12.00.00
Dell EMC SCG Policy Manager, versions from 5.10 to 5.12, contain(s) a contain a Hard-coded Cryptographic Key vulnerability.
network
low complexity
dell CWE-798
critical
9.8
2023-01-09 CVE-2022-36925 Use of Hard-coded Credentials vulnerability in Zoom Rooms
Zoom Rooms for macOS clients before version 5.11.4 contain an insecure key generation mechanism.
local
low complexity
zoom CWE-798
7.8