Vulnerabilities > Use of Hard-coded Credentials

DATE CVE VULNERABILITY TITLE RISK
2023-01-09 CVE-2022-36925 Use of Hard-coded Credentials vulnerability in Zoom Rooms 5.11.3
Zoom Rooms for macOS clients before version 5.11.4 contain an insecure key generation mechanism.
local
low complexity
zoom CWE-798
7.8
2023-01-05 CVE-2022-3927 Use of Hard-coded Credentials vulnerability in Hitachienergy Foxman-Un and Unem
The affected products store both public and private key that are used to sign and protect Custom Parameter Set (CPS) file from modification.
network
low complexity
hitachienergy CWE-798
critical
9.8
2023-01-05 CVE-2022-3928 Use of Hard-coded Credentials vulnerability in Hitachienergy Foxman-Un and Unem
Hardcoded credential is found in affected products' message queue.
local
low complexity
hitachienergy CWE-798
5.5
2023-01-03 CVE-2022-47618 Use of Hard-coded Credentials vulnerability in Meritlilin Ah55B04 Firmware and Ah55B08 Firmware
Merit LILIN AH55B04 & AH55B08 DVR firm has hard-coded administrator credentials.
network
low complexity
meritlilin CWE-798
critical
9.8
2023-01-01 CVE-2014-125030 Use of Hard-coded Credentials vulnerability in Empress Project Empress
A vulnerability, which was classified as critical, has been found in taoeffect Empress.
network
low complexity
empress-project CWE-798
critical
9.8
2022-12-29 CVE-2022-4780 Use of Hard-coded Credentials vulnerability in Elvexys Isos Firmware
ISOS firmwares from versions 1.81 to 2.00 contain hardcoded credentials from embedded StreamX installer that integrators are not forced to change.
local
low complexity
elvexys CWE-798
7.8
2022-12-27 CVE-2022-45425 Use of Hard-coded Credentials vulnerability in Dahuasecurity products
Some Dahua software products have a vulnerability of using of hard-coded cryptographic key.
network
low complexity
dahuasecurity CWE-798
7.5
2022-12-21 CVE-2022-36222 Use of Hard-coded Credentials vulnerability in Nokia Fastmile Firmware 3Tg00118Abad52
Nokia Fastmile 3tg00118abad52 devices shipped by Optus are shipped with a default hardcoded admin account of admin:Nq+L5st7o This account can be used locally to access the web admin interface.
local
low complexity
nokia CWE-798
8.4
2022-12-16 CVE-2022-37832 Use of Hard-coded Credentials vulnerability in Mutiny
Mutiny 7.2.0-10788 suffers from Hardcoded root password.
network
low complexity
mutiny CWE-798
critical
9.8
2022-12-13 CVE-2022-2660 Use of Hard-coded Credentials vulnerability in Deltaww Dialink 1.2.4.0
Delta Industrial Automation DIALink versions 1.4.0.0 and prior are vulnerable to the use of a hard-coded cryptographic key which could allow an attacker to decrypt sensitive data and compromise the machine.
network
low complexity
deltaww CWE-798
7.5