Vulnerabilities > Use of Hard-coded Credentials

DATE CVE VULNERABILITY TITLE RISK
2023-01-05 CVE-2022-3928 Use of Hard-coded Credentials vulnerability in Hitachienergy Foxman-Un and Unem
Hardcoded credential is found in affected products' message queue.
local
low complexity
hitachienergy CWE-798
5.5
5.5
2023-01-04 CVE-2023-22463 Use of Hard-coded Credentials vulnerability in Fit2Cloud Kubepi
KubePi is a k8s panel.
network
low complexity
fit2cloud CWE-798
critical
 9.8
9.8
2023-01-03 CVE-2022-47618 Use of Hard-coded Credentials vulnerability in Meritlilin Ah55B04 Firmware and Ah55B08 Firmware
Merit LILIN AH55B04 & AH55B08 DVR firm has hard-coded administrator credentials.
network
low complexity
meritlilin CWE-798
critical
 9.8
9.8
2023-01-01 CVE-2014-125030 Use of Hard-coded Credentials vulnerability in Empress Project Empress
A vulnerability, which was classified as critical, has been found in taoeffect Empress.
network
low complexity
empress-project CWE-798
critical
 9.8
9.8
2022-12-29 CVE-2022-4780 Use of Hard-coded Credentials vulnerability in Elvexys Isos Firmware
ISOS firmwares from versions 1.81 to 2.00 contain hardcoded credentials from embedded StreamX installer that integrators are not forced to change.
local
low complexity
elvexys CWE-798
7.8
7.8
2022-12-27 CVE-2022-45425 Use of Hard-coded Credentials vulnerability in Dahuasecurity products
Some Dahua software products have a vulnerability of using of hard-coded cryptographic key.
network
low complexity
dahuasecurity CWE-798
7.5
7.5
2022-12-21 CVE-2022-36222 Use of Hard-coded Credentials vulnerability in Nokia Fastmile Firmware 3Tg00118Abad52
Nokia Fastmile 3tg00118abad52 devices shipped by Optus are shipped with a default hardcoded admin account of admin:Nq+L5st7o This account can be used locally to access the web admin interface.
local
low complexity
nokia CWE-798
8.4
8.4
2022-12-19 CVE-2022-4611 Use of Hard-coded Credentials vulnerability in Clickstudios Passwordstate
A vulnerability, which was classified as problematic, was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome.
network
low complexity
clickstudios CWE-798
5.3
5.3
2022-12-16 CVE-2022-37832 Use of Hard-coded Credentials vulnerability in Mutiny
Mutiny 7.2.0-10788 suffers from Hardcoded root password.
network
low complexity
mutiny CWE-798
critical
 9.8
9.8
2022-12-13 CVE-2022-2660 Use of Hard-coded Credentials vulnerability in Deltaww Dialink 1.2.4.0
Delta Industrial Automation DIALink versions 1.4.0.0 and prior are vulnerable to the use of a hard-coded cryptographic key which could allow an attacker to decrypt sensitive data and compromise the machine.
network
low complexity
deltaww CWE-798
7.5
7.5