Vulnerabilities > Use of Hard-coded Credentials

DATE CVE VULNERABILITY TITLE RISK
2022-01-11 CVE-2021-45033 Use of Hard-coded Credentials vulnerability in Siemens products
A vulnerability has been identified in CP-8000 MASTER MODULE WITH I/O -25/+70°C (All versions < V16.20), CP-8000 MASTER MODULE WITH I/O -40/+70°C (All versions < V16.20), CP-8021 MASTER MODULE (All versions < V16.20), CP-8022 MASTER MODULE WITH GPRS (All versions < V16.20).
network
low complexity
siemens CWE-798
8.8
8.8
2022-01-10 CVE-2022-22845 Use of Hard-coded Credentials vulnerability in Qxip Homer Webapp
QXIP SIPCAPTURE homer-app before 1.4.28 for HOMER 7.x has the same 167f0db2-f83e-4baa-9736-d56064a5b415 JWT secret key across different customers' installations.
network
low complexity
qxip CWE-798
critical
 9.8
9.8
2022-01-04 CVE-2021-45913 Use of Hard-coded Credentials vulnerability in Controlup Agent
A hardcoded key in ControlUp Real-Time Agent (cuAgent.exe) before 8.2.5 may allow a potential attacker to run OS commands via a WCF channel.
network
low complexity
controlup CWE-798
7.2
7.2
2021-12-30 CVE-2021-20132 Use of Hard-coded Credentials vulnerability in Dlink Dir-2640-Us Firmware 1.01/1.01B04/1.11B02
Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 use default hard-coded credentials, which can allow a remote attacker to gain administrative access to the zebra or ripd those services.
low complexity
dlink CWE-798
8.8
8.8
2021-12-30 CVE-2021-20155 Use of Hard-coded Credentials vulnerability in Trendnet Tew-827Dru Firmware 2.08B01
Trendnet AC2600 TEW-827DRU version 2.08B01 makes use of hardcoded credentials.
network
low complexity
trendnet CWE-798
critical
 9.8
9.8
2021-12-30 CVE-2021-20170 Use of Hard-coded Credentials vulnerability in Netgear Rax43 Firmware 1.0.3.96
Netgear RAX43 version 1.0.3.96 makes use of hardcoded credentials.
network
low complexity
netgear CWE-798
8.8
8.8
2021-12-30 CVE-2021-45732 Use of Hard-coded Credentials vulnerability in Netgear R6700 Firmware 1.0.4.120
Netgear Nighthawk R6700 version 1.0.4.120 makes use of a hardcoded credential.
network
low complexity
netgear CWE-798
8.8
8.8
2021-12-27 CVE-2021-35232 Use of Hard-coded Credentials vulnerability in Solarwinds Webhelpdesk
Hard coded credentials discovered in SolarWinds Web Help Desk product.
local
low complexity
solarwinds CWE-798
6.1
6.1
2021-12-26 CVE-2021-45520 Use of Hard-coded Credentials vulnerability in Netgear Rbk352 Firmware, Rbr350 Firmware and Rbs350 Firmware
Certain NETGEAR devices are affected by a hardcoded password.
low complexity
netgear CWE-798
8.8
8.8
2021-12-26 CVE-2021-45521 Use of Hard-coded Credentials vulnerability in Netgear Rbk352 Firmware, Rbr350 Firmware and Rbs350 Firmware
Certain NETGEAR devices are affected by a hardcoded password.
low complexity
netgear CWE-798
6.5
6.5