Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-17 | CVE-2022-32985 | Use of Hard-coded Credentials vulnerability in Nexans products libnx_apl.so on Nexans FTTO GigaSwitch before 6.02N and 7.x before 7.02 implements a Backdoor Account for SSH logins on port 50200 or 50201. | 9.8 |
| 2022-07-17 | CVE-2022-30622 | Use of Hard-coded Credentials vulnerability in Chcnav P5E Gnss Firmware 4.1/4.2 Disclosure of information - the system allows you to view usernames and passwords without permissions, thus it will be possible to enter the system. | 7.3 |
| 2022-07-14 | CVE-2022-32389 | Use of Hard-coded Credentials vulnerability in Isode Swift 4.0.2 Isode SWIFT v4.0.2 was discovered to contain hard-coded credentials in the Registry Editor. | 7.5 |
| 2022-07-14 | CVE-2022-28371 | Use of Hard-coded Credentials vulnerability in Verizon products On Verizon 5G Home LVSKIHP InDoorUnit (IDU) 3.4.66.162 and OutDoorUnit (ODU) 3.33.101.0 devices, the CRTC and ODU RPC endpoints rely on a static certificate for access control. | 7.5 |
| 2022-07-13 | CVE-2022-35857 | Use of Hard-coded Credentials vulnerability in Kvf-Admin Project Kvf-Admin 20220212 kvf-admin through 2022-02-12 allows remote attackers to execute arbitrary code because deserialization is mishandled. | 9.8 |
| 2022-07-12 | CVE-2020-4157 | Use of Hard-coded Credentials vulnerability in IBM Qradar Network Security 5.4.0/5.5.0 IBM QRadar Network Security 5.4.0 and 5.5.0 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. | 7.5 |
| 2022-07-11 | CVE-2020-4150 | Use of Hard-coded Credentials vulnerability in IBM Security Siteprotector System 3.1.1 IBM SiteProtector Appliance 3.1.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. | 9.8 |
| 2022-07-04 | CVE-2022-34151 | Use of Hard-coded Credentials vulnerability in Omron products Use of hard-coded credentials vulnerability exists in Machine automation controller NJ series all models V 1.48 and earlier, Machine automation controller NX7 series all models V1.28 and earlier, Machine automation controller NX1 series all models V1.48 and earlier, Automation software 'Sysmac Studio' all models V1.49 and earlier, and Programmable Terminal (PT) NA series NA5-15W/NA5-12W/NA5-9W/NA5-7W models Runtime V1.15 and earlier, which may allow a remote attacker who successfully obtained the user credentials by analyzing the affected product to access the controller. | 8.1 |
| 2022-06-29 | CVE-2021-40597 | Use of Hard-coded Credentials vulnerability in Edimax Ic-3140W Firmware 3.11 The firmware of EDIMAX IC-3140W Version 3.11 is hardcoded with Administrator username and password. | 9.8 |
| 2022-06-28 | CVE-2022-30997 | Use of Hard-coded Credentials vulnerability in Yokogawa Stardom FCJ Firmware and Stardom FCN Firmware Use of hard-coded credentials vulnerability exists in STARDOM FCN Controller and FCJ Controller R4.10 to R4.31, which may allow an attacker with an administrative privilege to read/change configuration settings or update the controller with tampered firmware. | 7.2 |