Vulnerabilities > Use of Hard-coded Credentials

DATE CVE VULNERABILITY TITLE RISK
2018-01-05 CVE-2014-8579 Use of Hard-coded Credentials vulnerability in Trendnet Tew-823Dru Firmware 1.00B30
TRENDnet TEW-823DRU devices with firmware before 1.00b36 have a hardcoded password of kcodeskcodes for the root account, which makes it easier for remote attackers to obtain access via an FTP session.
network
low complexity
trendnet CWE-798
critical
9.8
2017-12-19 CVE-2017-17107 Use of Hard-coded Credentials vulnerability in Zivif Pr115-204-P-Rs Firmware 2.3.4.2103
Zivif PR115-204-P-RS V2.3.4.2103 web cameras contain a hard-coded cat1029 password for the root user.
network
low complexity
zivif CWE-798
critical
9.8
2017-12-16 CVE-2017-3186 Use of Hard-coded Credentials vulnerability in Acti Camera Firmware A1D500V6.11.31Ac
ACTi cameras including the D, B, I, and E series using firmware version A1D-500-V6.11.31-AC use non-random default credentials across all devices.
network
low complexity
acti CWE-798
critical
9.8
2017-12-16 CVE-2017-3184 Use of Hard-coded Credentials vulnerability in Acti Camera Firmware A1D500V6.11.31Ac
ACTi cameras including the D, B, I, and E series using firmware version A1D-500-V6.11.31-AC fail to properly restrict access to the factory reset page.
network
low complexity
acti CWE-798
critical
9.8
2017-12-06 CVE-2017-14374 Use of Hard-coded Credentials vulnerability in Dell Storage Manager
The SMI-S service in Dell Storage Manager versions earlier than 16.3.20 (aka 2016 R3.20) is protected using a hard-coded password.
network
low complexity
dell CWE-798
critical
9.8
2017-11-22 CVE-2017-2720 Use of Hard-coded Credentials vulnerability in Huawei Fusionsphere Openstack V100R006C00
FusionSphere OpenStack V100R006C00 has an information exposure vulnerability.
network
low complexity
huawei CWE-798
5.3
2017-11-16 CVE-2017-11026 Use of Hard-coded Credentials vulnerability in Google Android
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while flashing FRP partition using reference FRP unlock, authentication method can be compromised for static keys.
local
low complexity
google CWE-798
7.8
2017-11-16 CVE-2017-12350 Use of Hard-coded Credentials vulnerability in Cisco Umbrella Insights Virtual Appliance
A vulnerability in Cisco Umbrella Insights Virtual Appliances 2.1.0 and earlier could allow an authenticated, local attacker to log in to an affected virtual appliance with root privileges.
local
low complexity
cisco CWE-798
8.2
2017-11-01 CVE-2017-14027 Use of Hard-coded Credentials vulnerability in Korenix products
A Use of Hard-coded Credentials issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e, and JetNet6710G version 1.1.
network
low complexity
korenix CWE-798
critical
9.8
2017-11-01 CVE-2017-14021 Use of Hard-coded Credentials vulnerability in Korenix products
A Use of Hard-coded Cryptographic Key issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e, and JetNet6710G version 1.1.
network
low complexity
korenix CWE-798
critical
9.8