Vulnerabilities > Use of Hard-coded Credentials

DATE CVE VULNERABILITY TITLE RISK
2023-09-05 CVE-2023-41508 Use of Hard-coded Credentials vulnerability in Superstorefinder Super Store Finder 3.6
A hard coded password in Super Store Finder v3.6 allows attackers to access the administration panel.
network
low complexity
superstorefinder CWE-798
critical
9.8
2023-09-02 CVE-2023-39982 Use of Hard-coded Credentials vulnerability in Moxa Mxsecurity 1.0/1.0.1
A vulnerability has been identified in MXsecurity versions prior to v1.0.1.
network
high complexity
moxa CWE-798
5.9
2023-08-31 CVE-2023-31173 Use of Hard-coded Credentials vulnerability in Selinc Sel-5037 SEL Grid Configurator
Use of Hard-coded Credentials vulnerability in Schweitzer Engineering Laboratories SEL-5037 SEL Grid Configurator on Windows allows Authentication Bypass. See Instruction Manual Appendix A and Appendix E dated 20230615 for more details. This issue affects SEL-5037 SEL Grid Configurator: before 4.5.0.20.
local
low complexity
selinc CWE-798
8.4
2023-08-29 CVE-2023-23770 Use of Hard-coded Credentials vulnerability in Motorola Mbts Site Controller Firmware R05.32.58
Motorola MBTS Site Controller accepts hard-coded backdoor password.
network
low complexity
motorola CWE-798
critical
9.8
2023-08-29 CVE-2023-23771 Use of Hard-coded Credentials vulnerability in Motorola Mbts Base Radio Firmware R05.X2.57
Motorola MBTS Base Radio accepts hard-coded backdoor password.
local
low complexity
motorola CWE-798
8.4
2023-08-24 CVE-2023-32077 Use of Hard-coded Credentials vulnerability in Gravitl Netmaker
Netmaker makes networks with WireGuard.
network
low complexity
gravitl CWE-798
7.5
2023-08-24 CVE-2023-4419 Use of Hard-coded Credentials vulnerability in Sick Lms500 Firmware, Lms511 Firmware and Lms531 Firmware
The LMS5xx uses hard-coded credentials, which potentially allow low-skilled unauthorized remote attackers to reconfigure settings and /or disrupt the functionality of the device.
network
low complexity
sick CWE-798
8.8
2023-08-22 CVE-2023-37426 Use of Hard-coded Credentials vulnerability in Arubanetworks Edgeconnect Sd-Wan Orchestrator
EdgeConnect SD-WAN Orchestrator instances prior to the versions resolved in this advisory were found to have shared static SSH host keys for all installations.
network
low complexity
arubanetworks CWE-798
7.5
2023-08-21 CVE-2023-39808 Use of Hard-coded Credentials vulnerability in Nvki Intelligent Broadband Subscriber Gateway 3.5
N.V.K.INTER CO., LTD.
network
low complexity
nvki CWE-798
critical
9.8
2023-08-16 CVE-2023-4204 Use of Hard-coded Credentials vulnerability in Moxa Nport Iaw5000A-I/O Firmware 2.2
NPort IAW5000A-I/O Series firmware version v2.2 and prior is affected by a hardcoded credential vulnerabilitywhich poses a potential risk to the security and integrity of the affected device.
network
low complexity
moxa CWE-798
critical
9.8