Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-28 | CVE-2017-11693 | Use of Hard-coded Credentials vulnerability in Medhost Document Management System MEDHOST Document Management System contains hard-coded credentials that are used for customer database access. | 9.1 |
| 2017-07-25 | CVE-2017-11614 | Use of Hard-coded Credentials vulnerability in Medhost Connex MEDHOST Connex contains hard-coded credentials that are used for customer database access. | 9.8 |
| 2017-07-22 | CVE-2017-7336 | Use of Hard-coded Credentials vulnerability in Fortinet Fortiwlm 8.2.2/8.2.4/8.3.0 A hard-coded account named 'upgrade' in Fortinet FortiWLM 8.3.0 and lower versions allows a remote attacker to log-in and execute commands with 'upgrade' account privileges. | 9.8 |
| 2017-07-22 | CVE-2017-3222 | Use of Hard-coded Credentials vulnerability in Inmarsat Amosconnect Hard-coded credentials in AmosConnect 8 allow remote attackers to gain full administrative privileges, including the ability to execute commands on the Microsoft Windows host platform with SYSTEM privileges by abusing AmosConnect Task Manager. | 9.8 |
| 2017-07-21 | CVE-2017-9932 | Use of Hard-coded Credentials vulnerability in Greenpacket Dx-350 Firmware 2.8.9.5G1.4.8Atheeb Green Packet DX-350 Firmware version v2.8.9.5-g1.4.8-atheeb has a default password of admin for the admin account. | 9.8 |
| 2017-07-19 | CVE-2017-11436 | Use of Hard-coded Credentials vulnerability in Dlink Dir-615 20.12Ptb01 D-Link DIR-615 before v20.12PTb04 has a second admin account with a 0x1 BACKDOOR value, which might allow remote attackers to obtain access via a TELNET connection. | 9.8 |
| 2017-07-17 | CVE-2017-8011 | Use of Hard-coded Credentials vulnerability in Dell products EMC ViPR SRM, EMC Storage M&R, EMC VNX M&R, EMC M&R for SAS Solution Packs (EMC ViPR SRM prior to 4.1, EMC Storage M&R prior to 4.1, EMC VNX M&R all versions, EMC M&R (Watch4Net) for SAS Solution Packs all versions) contain undocumented accounts with default passwords for Webservice Gateway and RMI JMX components. | 9.8 |
| 2017-07-17 | CVE-2017-2343 | Use of Hard-coded Credentials vulnerability in Juniper Junos 12.3X48/15.1X49 The Integrated User Firewall (UserFW) feature was introduced in Junos OS version 12.1X47-D10 on the Juniper SRX Series devices to provide simple integration of user profiles on top of the existing firewall polices. | 9.8 |
| 2017-07-09 | CVE-2017-4976 | Use of Hard-coded Credentials vulnerability in EMC Esrs Policy Manager 6.7 EMC ESRS Policy Manager prior to 6.8 contains an undocumented account (OpenDS admin) with a default password. | 9.8 |
| 2017-07-07 | CVE-2017-2236 | Use of Hard-coded Credentials vulnerability in Toshiba Hem-Gw16A Firmware and Hem-Gw26A Firmware Toshiba Home gateway HEM-GW16A firmware HEM-GW16A-FW-V1.2.0 and earlier, Toshiba Home gateway HEM-GW26A firmware HEM-GW26A-FW-V1.2.0 and earlier uses hard-coded credentials, which may allow attackers to perform operations on device with administrative privileges. | 9.8 |