Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-03 | CVE-2023-36817 | Use of Hard-coded Credentials vulnerability in Kingstemple the King'S Temple Church Website 0.1.0 `tktchurch/website` contains the codebase for The King's Temple Church website. | 9.1 |
| 2023-06-30 | CVE-2023-28387 | Use of Hard-coded Credentials vulnerability in Uzabase Newspicks 10.4.2/10.4.5 "NewsPicks" App for Android versions 10.4.5 and earlier and "NewsPicks" App for iOS versions 10.4.2 and earlier use hard-coded credentials, which may allow a local attacker to analyze data in the app and to obtain API key for an external service. | 5.5 |
| 2023-06-22 | CVE-2023-2611 | Use of Hard-coded Credentials vulnerability in Advantech R-Seenet Advantech R-SeeNet versions 2.4.22 is installed with a hidden root-level user that is not available in the users list. | 9.8 |
| 2023-06-20 | CVE-2023-32274 | Use of Hard-coded Credentials vulnerability in Enphase Installer Toolkit 3.27.0 Enphase Installer Toolkit versions 3.27.0 has hard coded credentials embedded in binary code in the Android application. | 7.5 |
| 2023-06-16 | CVE-2023-25187 | Use of Hard-coded Credentials vulnerability in Nokia Asika Airscale Firmware An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. | 7.0 |
| 2023-06-14 | CVE-2023-3237 | Use of Hard-coded Credentials vulnerability in Otcms A vulnerability classified as critical was found in OTCMS up to 6.62. | 9.8 |
| 2023-06-13 | CVE-2023-2637 | Use of Hard-coded Credentials vulnerability in Rockwellautomation products Rockwell Automation's FactoryTalk System Services uses a hard-coded cryptographic key to generate administrator cookies. Hard-coded cryptographic key may lead to privilege escalation. This vulnerability may allow a local, authenticated non-admin user to generate an invalid administrator cookie giving them administrative privileges to the FactoryTalk Policy Manger database. | 8.2 |
| 2023-06-13 | CVE-2023-33920 | Use of Hard-coded Credentials vulnerability in Siemens Cpci85 Firmware A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05), CP-8050 MASTER MODULE (All versions < CPCI85 V05). | 6.8 |
| 2023-06-02 | CVE-2022-47617 | Use of Hard-coded Credentials vulnerability in Hitrontech Coda-5310 Firmware Hitron CODA-5310 has hard-coded encryption/decryption keys in the program code. | 7.2 |
| 2023-06-02 | CVE-2023-2061 | Use of Hard-coded Credentials vulnerability in Mitsubishielectric products Use of Hard-coded Password vulnerability in FTP function on Mitsubishi Electric Corporation MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP allows a remote unauthenticated attacker to obtain a hard-coded password and access to the module via FTP. | 7.5 |