Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-29 | CVE-2024-35118 | Use of Hard-coded Credentials vulnerability in IBM Maas360 MDM IBM MaaS360 for Android 6.31 through 8.60 is using hard coded credentials that can be obtained by a user with physical access to the device. | 4.6 |
| 2024-08-27 | CVE-2024-6633 | Use of Hard-coded Credentials vulnerability in Fortra Filecatalyst Workflow The default credentials for the setup HSQL database (HSQLDB) for FileCatalyst Workflow are published in a vendor knowledgebase article. | 9.8 |
| 2024-08-26 | CVE-2024-8162 | Use of Hard-coded Credentials vulnerability in Totolink T10 Firmware 4.1.8Cu.5207 A vulnerability classified as critical has been found in TOTOLINK T10 AC1200 4.1.8cu.5207. | 9.8 |
| 2024-08-24 | CVE-2024-8135 | Use of Hard-coded Credentials vulnerability in Gotribe A vulnerability classified as critical has been found in Go-Tribe gotribe up to cd3ccd32cd77852c9ea73f986eaf8c301cfb6310. | 9.8 |
| 2024-08-20 | CVE-2024-8005 | Use of Hard-coded Credentials vulnerability in Demozx GF CMS A vulnerability was found in demozx gf_cms 1.0/1.0.1. | 9.8 |
| 2024-08-16 | CVE-2024-42638 | Use of Hard-coded Credentials vulnerability in H3C Magic B1St Firmware 100R012 H3C Magic B1ST v100R012 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root. | 9.8 |
| 2024-08-15 | CVE-2024-31798 | Use of Hard-coded Credentials vulnerability in Gncchome Gncc C2 Firmware Identical Hardcoded Root Password for All Devices in GNCC's GC2 Indoor Security Camera 1080P allows an attacker with physical access to retrieve the root password for all similar devices | 6.8 |
| 2024-08-08 | CVE-2024-41161 | Use of Hard-coded Credentials vulnerability in Vonets products Use of hard-coded credentials vulnerability affecting Vonets industrial wifi bridge relays and WiFi bridge repeaters, software versions 3.3.23.6.9 and prior, enables an unauthenticated remote attacker to bypass authentication using hard-coded administrator credentials. | 9.8 |
| 2024-08-07 | CVE-2024-6890 | Use of Hard-coded Credentials vulnerability in Journyx 11.5.4 Password reset tokens are generated using an insecure source of randomness. | 8.8 |
| 2024-08-06 | CVE-2024-41616 | Use of Hard-coded Credentials vulnerability in Dlink Dir-300 Firmware 1.06B05Ww D-Link DIR-300 REVA FIRMWARE v1.06B05_WW contains hardcoded credentials in the Telnet service. | 9.8 |