Vulnerabilities > Use of Hard-coded Credentials

DATE CVE VULNERABILITY TITLE RISK
2025-01-14 CVE-2024-50564 Use of Hard-coded Credentials vulnerability in Fortinet Forticlient
A use of hard-coded cryptographic key in Fortinet FortiClientWindows version 7.4.0, 7.2.x all versions, 7.0.x all versions, and 6.4.x all versions may allow a low-privileged user to decrypt interprocess communication via monitoring named piped.
local
low complexity
fortinet CWE-798
3.3
2025-01-07 CVE-2024-28778 IBM Cognos Controller 11.0.0 through 11.0.1 and IBM Controller 11.1.0 is vulnerable to exposure of Artifactory API keys.
network
low complexity
CWE-798
6.5
2024-12-13 CVE-2024-48007 Use of Hard-coded Credentials vulnerability in Dell Recoverpoint for Virtual Machines 6.0
Dell RecoverPoint for Virtual Machines 6.0.x contains use of hard-coded credentials vulnerability.
network
low complexity
dell CWE-798
critical
9.8
2024-12-05 CVE-2024-51551 Use of Hard-coded Credentials vulnerability in ABB products
Default Credentail vulnerabilities in ASPECT on Linux allows access to the product using publicly available default credentials.  Affected products: ABB ASPECT - Enterprise v3.07.02; NEXUS Series v3.07.02; MATRIX Series v3.07.02
network
low complexity
abb CWE-798
critical
10.0
2024-12-03 CVE-2024-41777 Use of Hard-coded Credentials vulnerability in IBM Cognos Controller 11.0.0/11.0.1
IBM Cognos Controller 11.0.0 and 11.0.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.
network
low complexity
ibm CWE-798
7.5
2024-11-29 CVE-2024-49805 Use of Hard-coded Credentials vulnerability in IBM Security Verify Access
IBM Security Verify Access Appliance 10.0.0 through 10.0.8 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.
network
low complexity
ibm CWE-798
critical
9.8
2024-11-29 CVE-2024-49806 Use of Hard-coded Credentials vulnerability in IBM Security Verify Access
IBM Security Verify Access Appliance 10.0.0 through 10.0.8 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.
network
low complexity
ibm CWE-798
critical
9.8
2024-11-13 CVE-2024-7295 Use of Hard-coded Credentials vulnerability in Progress Telerik Report Server
In Progress® Telerik® Report Server versions prior to 2024 Q4 (10.3.24.1112), the encryption of local asset data used an older algorithm which may allow a sophisticated actor to decrypt this information.
local
low complexity
progress CWE-798
6.2
2024-11-08 CVE-2024-11026 Use of Hard-coded Credentials vulnerability in Free-Now Freenow 12.10.0
A vulnerability was found in Intelligent Apps Freenow App 12.10.0 on Android.
network
high complexity
free-now CWE-798
7.4
2024-11-06 CVE-2024-10920 Use of Hard-coded Credentials vulnerability in Mariazevedo88 Travels-Java-Api
A vulnerability was found in mariazevedo88 travels-java-api up to 5.0.1 and classified as problematic.
network
high complexity
mariazevedo88 CWE-798
3.7