Vulnerabilities > Use of Hard-coded Credentials

DATE CVE VULNERABILITY TITLE RISK
2023-01-27 CVE-2022-48067 Use of Hard-coded Credentials vulnerability in Totolink A830R Firmware 4.1.2Cu.5182
An information disclosure vulnerability in Totolink A830R V4.1.2cu.5182 allows attackers to obtain the root password via a brute-force attack.
local
low complexity
totolink CWE-798
5.5
2023-01-26 CVE-2023-24022 Use of Hard-coded Credentials vulnerability in Baicells RTD Firmware and RTS Firmware
Baicells Nova 227, Nova 233, and Nova 243 LTE TDD eNodeB devices with firmware through RTS/RTD 3.7.11.3 have hardcoded credentials that are easily discovered and can be used by remote attackers to authenticate via ssh.
network
low complexity
baicells CWE-798
critical
9.8
2023-01-20 CVE-2023-20038 Use of Hard-coded Credentials vulnerability in Cisco Industrial Network Director
A vulnerability in the monitoring application of Cisco Industrial Network Director could allow an authenticated, local attacker to access a static secret key used to store both local data and credentials for accessing remote systems. This vulnerability is due to a static key value stored in the application used to encrypt application data and remote credentials.
local
low complexity
cisco CWE-798
8.8
2023-01-18 CVE-2022-34442 Use of Hard-coded Credentials vulnerability in Dell EMC Secure Connect Gateway Policy Manager 5.10.00.00/5.12.00.00
Dell EMC SCG Policy Manager, versions from 5.10 to 5.12, contain(s) a contain a Hard-coded Cryptographic Key vulnerability.
network
low complexity
dell CWE-798
critical
9.8
2023-01-18 CVE-2022-34462 Use of Hard-coded Credentials vulnerability in Dell EMC Secure Connect Gateway Policy Manager 5.10.00.00/5.12.00.00
Dell EMC SCG Policy Manager, versions from 5.10 to 5.12, contain(s) a Hard-coded Password Vulnerability.
local
low complexity
dell CWE-798
7.8
2023-01-18 CVE-2022-45444 Use of Hard-coded Credentials vulnerability in Sewio Real-Time Location System Studio
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 contains hard-coded passwords for select users in the application’s database.
network
low complexity
sewio CWE-798
critical
9.8
2023-01-14 CVE-2023-22495 Use of Hard-coded Credentials vulnerability in Maif Izanami
Izanami is a shared configuration service well-suited for micro-service architecture implementation.
network
low complexity
maif CWE-798
critical
9.8
2023-01-12 CVE-2022-39185 Use of Hard-coded Credentials vulnerability in Exfo Bv-10 Firmware
EXFO - BV-10 Performance Endpoint Unit Undocumented privileged user.
network
low complexity
exfo CWE-798
critical
9.8
2023-01-11 CVE-2022-34441 Use of Hard-coded Credentials vulnerability in Dell EMC Secure Connect Gateway Policy Manager 5.10.00.00/5.12.00.00
Dell EMC SCG Policy Manager, versions from 5.10 to 5.12, contain(s) a contain a Hard-coded Cryptographic Key vulnerability.
network
low complexity
dell CWE-798
critical
9.8
2023-01-11 CVE-2022-34440 Use of Hard-coded Credentials vulnerability in Dell EMC Secure Connect Gateway Policy Manager 5.10.00.00/5.12.00.00
Dell EMC SCG Policy Manager, versions from 5.10 to 5.12, contain(s) a contain a Hard-coded Cryptographic Key vulnerability.
network
low complexity
dell CWE-798
critical
9.8