Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-03 | CVE-2021-42892 | Use of Hard-coded Credentials vulnerability in Totolink Ex1200T Firmware 4.1.2Cu.5215 In TOTOLINK EX1200T V4.1.2cu.5215, an attacker can start telnet without authorization because the default username and password exists in the firmware. | 4.3 |
| 2022-06-02 | CVE-2022-30234 | Use of Hard-coded Credentials vulnerability in Schneider-Electric products A CWE-798: Use of Hard-coded Credentials vulnerability exists that could allow arbitrary code to be executed when root level access is obtained. | 9.8 |
| 2022-06-02 | CVE-2022-31460 | Use of Hard-coded Credentials vulnerability in Owllabs Meeting OWL PRO Firmware 5.2.0.15 Owl Labs Meeting Owl 5.2.0.15 allows attackers to activate Tethering Mode with hard-coded hoothoot credentials via a certain c 150 value. | 7.4 |
| 2022-06-02 | CVE-2022-31462 | Use of Hard-coded Credentials vulnerability in Owllabs Meeting OWL PRO Firmware 5.2.0.15 Owl Labs Meeting Owl 5.2.0.15 allows attackers to control the device via a backdoor password (derived from the serial number) that can be found in Bluetooth broadcast data. | 8.8 |
| 2022-06-02 | CVE-2022-28605 | Use of Hard-coded Credentials vulnerability in Linkplay Sound BAR 1.0 Hardcoded admin token in SoundBar apps in Linkplay SDK 1.00 allows remote attackers to gain admin privilege access in linkplay antifactory | 9.8 |
| 2022-06-02 | CVE-2022-29730 | Use of Hard-coded Credentials vulnerability in USR products USR IOT 4G LTE Industrial Cellular VPN Router v1.0.36 was discovered to contain hard-coded credentials for its highest privileged account. | 9.8 |
| 2022-05-26 | CVE-2021-33014 | Use of Hard-coded Credentials vulnerability in Kuka KR C4 Firmware and KSS An attacker can gain VxWorks Shell after login due to hard-coded credentials on a KUKA KR C4 control software for versions prior to 8.7 or any product running KSS. | 8.8 |
| 2022-05-26 | CVE-2021-33016 | Use of Hard-coded Credentials vulnerability in Kuka KR C4 Firmware and KSS An attacker can gain full access (read/write/delete) to sensitive folders due to hard-coded credentials on KUKA KR C4 control software for versions prior to 8.7 or any product running KSS. | 9.8 |
| 2022-05-24 | CVE-2013-10002 | Use of Hard-coded Credentials vulnerability in Telecomsoftware Samwin Agent and Samwin Contact Center A vulnerability was found in Telecommunication Software SAMwin Contact Center Suite 5.1. | 9.1 |
| 2022-05-20 | CVE-2022-29186 | Use of Hard-coded Credentials vulnerability in Pagerduty Rundeck Rundeck is an open source automation service with a web console, command line tools and a WebAPI. | 9.8 |