Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-02-08 | CVE-2012-2166 | Use of Hard-coded Credentials vulnerability in IBM products IBM XIV Storage System 2810-A14 and 2812-A14 devices before level 10.2.4.e-2 and 2810-114 and 2812-114 devices before level 11.1.1 have hardcoded passwords for unspecified accounts, which allows remote attackers to gain user access via unknown vectors. | 9.8 |
| 2018-02-06 | CVE-2016-3953 | Use of Hard-coded Credentials vulnerability in Web2Py The sample web application in web2py before 2.14.2 might allow remote attackers to execute arbitrary code via vectors involving use of a hardcoded encryption key when calling the session.connect function. | 9.8 |
| 2018-02-05 | CVE-2018-5797 | Use of Hard-coded Credentials vulnerability in Extremenetworks Extremewireless Wing An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. | 7.5 |
| 2018-01-29 | CVE-2018-6387 | Use of Hard-coded Credentials vulnerability in Iball Ib-Wra150N Firmware 1.2.6 iBall iB-WRA150N 1.2.6 build 110401 Rel.47776n devices have a hardcoded password of admin for the admin account, a hardcoded password of support for the support account, and a hardcoded password of user for the user account. | 9.8 |
| 2018-01-26 | CVE-2017-1204 | Use of Hard-coded Credentials vulnerability in IBM Tealeaf Customer Experience 8.7/8.8/9.0.2 IBM Tealeaf Customer Experience 8.7, 8.8, and 9.0.2 contains hard-coded credentials. | 9.8 |
| 2018-01-26 | CVE-2017-3762 | Use of Hard-coded Credentials vulnerability in Lenovo Fingerprint Manager PRO 8.01.86 Sensitive data stored by Lenovo Fingerprint Manager Pro, version 8.01.86 and earlier, including users' Windows logon credentials and fingerprint data, is encrypted using a weak algorithm, contains a hard-coded password, and is accessible to all users with local non-administrative access to the system in which it is installed. | 7.8 |
| 2018-01-16 | CVE-2018-5725 | Use of Hard-coded Credentials vulnerability in Barni Master IP Camera01 Firmware 3.3.4.2103 MASTER IPCAMERA01 3.3.4.2103 devices allow Unauthenticated Configuration Change, as demonstrated by the port number of the web server. | 7.5 |
| 2018-01-16 | CVE-2018-5723 | Use of Hard-coded Credentials vulnerability in Barni Master IP Camera01 Firmware 3.3.4.2103 MASTER IPCAMERA01 3.3.4.2103 devices have a hardcoded password of cat1029 for the root account. | 9.8 |
| 2018-01-05 | CVE-2014-8579 | Use of Hard-coded Credentials vulnerability in Trendnet Tew-823Dru Firmware 1.00B30 TRENDnet TEW-823DRU devices with firmware before 1.00b36 have a hardcoded password of kcodeskcodes for the root account, which makes it easier for remote attackers to obtain access via an FTP session. | 9.8 |
| 2017-12-19 | CVE-2017-17107 | Use of Hard-coded Credentials vulnerability in Zivif Pr115-204-P-Rs Firmware 2.3.4.2103 Zivif PR115-204-P-RS V2.3.4.2103 web cameras contain a hard-coded cat1029 password for the root user. | 9.8 |