Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-30 | CVE-2021-46008 | Use of Hard-coded Credentials vulnerability in Totolink A3100R Firmware 5.9C.4577 In totolink a3100r V5.9c.4577, the hard-coded telnet password can be discovered from official released firmware. | 8.8 |
| 2022-03-30 | CVE-2022-24693 | Use of Hard-coded Credentials vulnerability in Baicells Neutrino 430 Firmware and Nova436Q Firmware Baicells Nova436Q and Neutrino 430 devices with firmware through QRTB 2.7.8 have hardcoded credentials that are easily discovered, and can be used by remote attackers to authenticate via ssh. | 9.8 |
| 2022-03-29 | CVE-2022-25521 | Use of Hard-coded Credentials vulnerability in Nuuo Network Video Recorder Firmware NUUO v03.11.00 was discovered to contain access control issue. | 9.8 |
| 2022-03-25 | CVE-2022-25577 | Use of Hard-coded Credentials vulnerability in Alf-Banco 8.2.5 ALF-BanCO v8.2.5 and below was discovered to use a hardcoded password to encrypt the SQLite database containing the user's data. | 9.1 |
| 2022-03-23 | CVE-2021-27430 | Use of Hard-coded Credentials vulnerability in GE UR Bootloader Binary 7.00/7.01/7.02 GE UR bootloader binary Version 7.00, 7.01 and 7.02 included unused hardcoded credentials. | 6.8 |
| 2022-03-21 | CVE-2021-45877 | Use of Hard-coded Credentials vulnerability in Garo products Multiple versions of GARO Wallbox GLB/GTB/GTC are affected by hard coded credentials. | 9.8 |
| 2022-03-18 | CVE-2020-25180 | Use of Hard-coded Credentials vulnerability in multiple products Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x includes the functionality of setting a password that is required to execute privileged commands. | 6.5 |
| 2022-03-18 | CVE-2020-25193 | Use of Hard-coded Credentials vulnerability in GE Rt430 Firmware, Rt431 Firmware and Rt434 Firmware By having access to the hard-coded cryptographic key for GE Reason RT430, RT431 & RT434 GNSS clocks in firmware versions prior to version 08A06, attackers would be able to intercept and decrypt encrypted traffic through an HTTPS connection. | 5.3 |
| 2022-03-16 | CVE-2022-25246 | Use of Hard-coded Credentials vulnerability in PTC Axeda Agent and Axeda Desktop Server Axeda agent (All versions) and Axeda Desktop Server for Windows (All versions) uses hard-coded credentials for its UltraVNC installation. | 8.8 |
| 2022-03-16 | CVE-2022-26660 | Use of Hard-coded Credentials vulnerability in Robotronic Runasspc 4.0.0.0 RunAsSpc 4.0 uses a universal and recoverable encryption key. | 7.5 |