Vulnerabilities > Use of Hard-coded Credentials

DATE CVE VULNERABILITY TITLE RISK
2018-02-12 CVE-2018-1214 Use of Hard-coded Credentials vulnerability in Dell EMC Supportassist Enterprise 1.1
Dell EMC SupportAssist Enterprise version 1.1 creates a local Windows user account named "OMEAdapterUser" with a default password as part of the installation process.
local
high complexity
dell CWE-798
7.0
2018-02-09 CVE-2018-6825 Use of Hard-coded Credentials vulnerability in Omninova Vobot Firmware
An issue was discovered on VOBOT CLOCK before 0.99.30 devices.
network
low complexity
omninova CWE-798
critical
9.8
2018-02-08 CVE-2012-2166 Use of Hard-coded Credentials vulnerability in IBM products
IBM XIV Storage System 2810-A14 and 2812-A14 devices before level 10.2.4.e-2 and 2810-114 and 2812-114 devices before level 11.1.1 have hardcoded passwords for unspecified accounts, which allows remote attackers to gain user access via unknown vectors.
network
low complexity
ibm CWE-798
critical
9.8
2018-02-06 CVE-2016-3953 Use of Hard-coded Credentials vulnerability in Web2Py
The sample web application in web2py before 2.14.2 might allow remote attackers to execute arbitrary code via vectors involving use of a hardcoded encryption key when calling the session.connect function.
network
low complexity
web2py CWE-798
critical
9.8
2018-02-05 CVE-2018-5797 Use of Hard-coded Credentials vulnerability in Extremenetworks Extremewireless Wing
An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3.
high complexity
extremenetworks CWE-798
7.5
2018-01-29 CVE-2018-6387 Use of Hard-coded Credentials vulnerability in Iball Ib-Wra150N Firmware 1.2.6
iBall iB-WRA150N 1.2.6 build 110401 Rel.47776n devices have a hardcoded password of admin for the admin account, a hardcoded password of support for the support account, and a hardcoded password of user for the user account.
network
low complexity
iball CWE-798
critical
9.8
2018-01-26 CVE-2017-1204 Use of Hard-coded Credentials vulnerability in IBM Tealeaf Customer Experience 8.7/8.8/9.0.2
IBM Tealeaf Customer Experience 8.7, 8.8, and 9.0.2 contains hard-coded credentials.
network
low complexity
ibm CWE-798
critical
9.8
2018-01-26 CVE-2017-3762 Use of Hard-coded Credentials vulnerability in Lenovo Fingerprint Manager PRO 8.01.86
Sensitive data stored by Lenovo Fingerprint Manager Pro, version 8.01.86 and earlier, including users' Windows logon credentials and fingerprint data, is encrypted using a weak algorithm, contains a hard-coded password, and is accessible to all users with local non-administrative access to the system in which it is installed.
local
low complexity
lenovo CWE-798
7.8
2018-01-16 CVE-2018-5725 Use of Hard-coded Credentials vulnerability in Barni Master IP Camera01 Firmware 3.3.4.2103
MASTER IPCAMERA01 3.3.4.2103 devices allow Unauthenticated Configuration Change, as demonstrated by the port number of the web server.
network
low complexity
barni CWE-798
7.5
2018-01-16 CVE-2018-5723 Use of Hard-coded Credentials vulnerability in Barni Master IP Camera01 Firmware 3.3.4.2103
MASTER IPCAMERA01 3.3.4.2103 devices have a hardcoded password of cat1029 for the root account.
network
low complexity
barni CWE-798
critical
9.8