Vulnerabilities > Use of Hard-coded Credentials

DATE CVE VULNERABILITY TITLE RISK
2017-08-02 CVE-2017-2283 Use of Hard-coded Credentials vulnerability in Iodata Wn-G300R3 Firmware
WN-G300R3 firmware version 1.0.2 and earlier uses hardcoded credentials which may allow an attacker that can access the device to execute arbitrary code on the device.
low complexity
iodata CWE-798
8.0
2017-08-02 CVE-2017-2280 Use of Hard-coded Credentials vulnerability in Iodata Wn-Ax1167Gr Firmware 3.00
WN-AX1167GR firmware version 3.00 and earlier uses hardcoded credentials which may allow an attacker that can access the device to execute arbitrary code on the device.
low complexity
iodata CWE-798
8.8
2017-08-01 CVE-2017-11380 Use of Hard-coded Credentials vulnerability in Trendmicro Deep Discovery Director 1.1
Backup archives were found to be encrypted with a static password across different installations, which suggest the same password may be used in all virtual appliance instances of Trend Micro Deep Discovery Director 1.1.
network
low complexity
trendmicro CWE-798
critical
9.8
2017-08-01 CVE-2017-11129 Use of Hard-coded Credentials vulnerability in Stashcat Heinekingmedia 1.7.5
An issue was discovered in heinekingmedia StashCat through 1.7.5 for Android.
network
low complexity
stashcat CWE-798
critical
9.8
2017-07-31 CVE-2017-11743 Use of Hard-coded Credentials vulnerability in Medhost Connex
MEDHOST Connex contains a hard-coded Mirth Connect admin credential that is used for customer Mirth Connect management access.
network
low complexity
medhost CWE-798
critical
9.8
2017-07-31 CVE-2017-9488 Use of Hard-coded Credentials vulnerability in Cisco Dpc3939 Firmware and Dpc3941T Firmware
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) and DPC3941T (firmware version DPC3941_2.5s3_PROD_sey) devices allows remote attackers to access the web UI by establishing a session to the wan0 WAN IPv6 address and then entering unspecified hardcoded credentials.
low complexity
cisco CWE-798
8.8
2017-07-28 CVE-2017-11694 Use of Hard-coded Credentials vulnerability in Medhost Document Management System
MEDHOST Document Management System contains hard-coded credentials that are used for Apache Solr access.
network
low complexity
medhost CWE-798
critical
9.1
2017-07-28 CVE-2017-11693 Use of Hard-coded Credentials vulnerability in Medhost Document Management System
MEDHOST Document Management System contains hard-coded credentials that are used for customer database access.
network
low complexity
medhost CWE-798
critical
9.1
2017-07-25 CVE-2017-11614 Use of Hard-coded Credentials vulnerability in Medhost Connex
MEDHOST Connex contains hard-coded credentials that are used for customer database access.
network
low complexity
medhost CWE-798
critical
9.8
2017-07-22 CVE-2017-7336 Use of Hard-coded Credentials vulnerability in Fortinet Fortiwlm 8.2.2/8.2.4/8.3.0
A hard-coded account named 'upgrade' in Fortinet FortiWLM 8.3.0 and lower versions allows a remote attacker to log-in and execute commands with 'upgrade' account privileges.
network
low complexity
fortinet CWE-798
critical
9.8