Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-01 | CVE-2022-4333 | Use of Hard-coded Credentials vulnerability in Sprecher-Automation products Hardcoded Credentials in multiple SPRECON-E CPU variants of Sprecher Automation allows an remote attacker to take over the device. | 9.8 |
| 2023-06-01 | CVE-2023-33778 | Use of Hard-coded Credentials vulnerability in Draytek products Draytek Vigor Routers firmware versions below 3.9.6/4.2.4, Access Points firmware versions below v1.4.0, Switches firmware versions below 2.6.7, and Myvigor firmware versions below 2.3.2 were discovered to use hardcoded encryption keys which allows attackers to bind any affected device to their own account. | 9.8 |
| 2023-06-01 | CVE-2023-28937 | Use of Hard-coded Credentials vulnerability in Saison Dataspider Servista DataSpider Servista version 4.4 and earlier uses a hard-coded cryptographic key. | 8.8 |
| 2023-05-30 | CVE-2023-31184 | Use of Hard-coded Credentials vulnerability in Rozcom Client ROZCOM client CWE-798: Use of Hard-coded Credentials | 7.8 |
| 2023-05-24 | CVE-2023-1944 | Use of Hard-coded Credentials vulnerability in Kubernetes Minikube This vulnerability enables ssh access to minikube container using a default password. | 7.8 |
| 2023-05-23 | CVE-2023-27512 | Use of Hard-coded Credentials vulnerability in Contec Sv-Cpt-Mc310 Firmware and Sv-Cpt-Mc310F Firmware Use of hard-coded credentials exists in SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10, and SV-CPT-MC310F versions prior to Ver.8.10, which may allow a remote authenticated attacker to login the affected product with an administrative privilege and perform an unintended operation. | 7.2 |
| 2023-05-23 | CVE-2023-27921 | Use of Hard-coded Credentials vulnerability in Jins Meme Firmware 2.2.0 JINS MEME CORE Firmware version 2.2.0 and earlier uses a hard-coded cryptographic key, which may lead to data acquired by a sensor of the affected product being decrypted by a network-adjacent attacker. | 6.5 |
| 2023-05-22 | CVE-2023-2504 | Use of Hard-coded Credentials vulnerability in Birddog products Files present on firmware images could allow an attacker to gain unauthorized access as a root user using hard-coded credentials. | 9.8 |
| 2023-05-22 | CVE-2023-31240 | Use of Hard-coded Credentials vulnerability in Snapone Orvc Snap One OvrC Pro versions prior to 7.2 have their own locally running web server accessible both from the local network and remotely. | 9.8 |
| 2023-05-22 | CVE-2023-33236 | Use of Hard-coded Credentials vulnerability in Moxa Mxsecurity 1.0 MXsecurity version 1.0 is vulnearble to hardcoded credential vulnerability. | 9.8 |