Vulnerabilities > Use of Hard-coded Credentials

DATE CVE VULNERABILITY TITLE RISK
2022-12-13 CVE-2022-41653 Use of Hard-coded Credentials vulnerability in Daikinlatam Svmpc1 and Svmpc2
Daikin SVMPC1 version 2.1.22 and prior and SVMPC2 version 1.2.3 and prior are vulnerable to an attacker obtaining user login credentials and control the system.
network
low complexity
daikinlatam CWE-798
critical
9.8
2022-12-07 CVE-2022-34840 Use of Hard-coded Credentials vulnerability in Buffalo products
Use of hard-coded credentials vulnerability in multiple Buffalo network devices allows a network-adjacent attacker to alter?configuration settings of the device.
low complexity
buffalo CWE-798
6.5
2022-12-06 CVE-2022-38337 Use of Hard-coded Credentials vulnerability in Mobatek Mobaxterm
When aborting a SFTP connection, MobaXterm before v22.1 sends a hardcoded password to the server.
network
low complexity
mobatek CWE-798
critical
9.1
2022-11-30 CVE-2022-44096 Use of Hard-coded Credentials vulnerability in Sanitization Management System Project Sanitization Management System 1.0
Sanitization Management System v1.0 was discovered to contain hardcoded credentials which allows attackers to escalate privileges and access the admin panel.
network
low complexity
sanitization-management-system-project CWE-798
critical
9.8
2022-11-30 CVE-2022-44097 Use of Hard-coded Credentials vulnerability in Book Store Management System Project Book Store Management System 1.0
Book Store Management System v1.0 was discovered to contain hardcoded credentials which allows attackers to escalate privileges and access the admin panel.
network
low complexity
book-store-management-system-project CWE-798
critical
9.8
2022-11-25 CVE-2022-41157 Use of Hard-coded Credentials vulnerability in Webcash Serp Server 2.0
A specific file on the sERP server if Kyungrinara(ERP solution) has a fixed password with the SYSTEM authority.
network
low complexity
webcash CWE-798
critical
9.8
2022-11-25 CVE-2022-29825 Use of Hard-coded Credentials vulnerability in Mitsubishielectric GX Works3
Use of Hard-coded Password vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U and GT Designer3 Version1 (GOT2000) versions from 1.122C to 1.290C allows an unauthenticated attacker to disclose sensitive information.
network
low complexity
mitsubishielectric CWE-798
7.5
2022-11-25 CVE-2022-29827 Use of Hard-coded Credentials vulnerability in Mitsubishielectric GX Works3
Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A and later allows a remote unauthenticated attacker to disclose sensitive information.
network
low complexity
mitsubishielectric CWE-798
7.5
2022-11-25 CVE-2022-29828 Use of Hard-coded Credentials vulnerability in Mitsubishielectric GX Works3
Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A and later allows a remote unauthenticated attacker to disclose sensitive information.
network
low complexity
mitsubishielectric CWE-798
7.5
2022-11-25 CVE-2022-29829 Use of Hard-coded Credentials vulnerability in Mitsubishielectric GX Works3
Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U, GT Designer3 Version1 (GOT2000) versions from 1.122C to 1.290C and Motion Control Setting(GX Works3 related software) versions from 1.035M to 1.042U allows a remote unauthenticated attacker to disclose sensitive information.
network
low complexity
mitsubishielectric CWE-798
7.5