Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-02 | CVE-2022-31462 | Use of Hard-coded Credentials vulnerability in Owllabs Meeting OWL PRO Firmware 5.2.0.15 Owl Labs Meeting Owl 5.2.0.15 allows attackers to control the device via a backdoor password (derived from the serial number) that can be found in Bluetooth broadcast data. | 8.8 |
| 2022-06-02 | CVE-2022-28605 | Use of Hard-coded Credentials vulnerability in Linkplay Sound BAR 1.0 Hardcoded admin token in SoundBar apps in Linkplay SDK 1.00 allows remote attackers to gain admin privilege access in linkplay antifactory | 9.8 |
| 2022-06-02 | CVE-2022-29730 | Use of Hard-coded Credentials vulnerability in USR products USR IOT 4G LTE Industrial Cellular VPN Router v1.0.36 was discovered to contain hard-coded credentials for its highest privileged account. | 9.8 |
| 2022-05-24 | CVE-2013-10002 | Use of Hard-coded Credentials vulnerability in Telecomsoftware Samwin Agent and Samwin Contact Center A vulnerability was found in Telecommunication Software SAMwin Contact Center Suite 5.1. | 9.1 |
| 2022-05-20 | CVE-2022-29186 | Use of Hard-coded Credentials vulnerability in Pagerduty Rundeck Rundeck is an open source automation service with a web console, command line tools and a WebAPI. | 9.8 |
| 2022-05-18 | CVE-2021-42850 | Use of Hard-coded Credentials vulnerability in Lenovo products A weak default administrator password for the web interface and serial port was reported in some Lenovo Personal Cloud Storage devices that could allow unauthorized device access to an attacker with physical or local network access. | 7.8 |
| 2022-05-18 | CVE-2022-29644 | Use of Hard-coded Credentials vulnerability in Totolink A3100R Firmware 4.1.2Cu.5050B20200504/4.1.2Cu.5247B20211129 TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a hard coded password for the telnet service stored in the component /web_cste/cgi-bin/product.ini. | 9.8 |
| 2022-05-18 | CVE-2022-29645 | Use of Hard-coded Credentials vulnerability in Totolink A3100R Firmware 4.1.2Cu.5050B20200504/4.1.2Cu.5247B20211129 TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a hard coded password for root stored in the component /etc/shadow.sample. | 9.8 |
| 2022-05-13 | CVE-2022-1701 | Use of Hard-coded Credentials vulnerability in Sonicwall products SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions uses a shared and hard-coded encryption key to store data. | 7.5 |
| 2022-05-12 | CVE-2022-26020 | Use of Hard-coded Credentials vulnerability in Inhandnetworks Ir302 Firmware 3.5.37 An information disclosure vulnerability exists in the router configuration export functionality of InHand Networks InRouter302 V3.5.4. | 6.5 |