Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-19 | CVE-2021-36799 | Use of Hard-coded Credentials vulnerability in KNX Engineering Tool Software 5 KNX ETS5 through 5.7.6 uses the hard-coded password ETS5Password, with a salt value of Ivan Medvedev, allowing local users to read project information. | 8.8 |
| 2021-07-16 | CVE-2021-21818 | Use of Hard-coded Credentials vulnerability in Dlink Dir-3040 Firmware 1.13B03 A hard-coded password vulnerability exists in the Zebra IP Routing Manager functionality of D-LINK DIR-3040 1.13B03. | 7.5 |
| 2021-07-16 | CVE-2021-21820 | Use of Hard-coded Credentials vulnerability in Dlink Dir-3040 Firmware 1.13B03 A hard-coded password vulnerability exists in the Libcli Test Environment functionality of D-LINK DIR-3040 1.13B03. | 9.8 |
| 2021-07-15 | CVE-2021-0279 | Use of Hard-coded Credentials vulnerability in Juniper Contrail Cloud Juniper Networks Contrail Cloud (CC) releases prior to 13.6.0 have RabbitMQ service enabled by default with hardcoded credentials. | 5.5 |
| 2021-07-15 | CVE-2021-20537 | Use of Hard-coded Credentials vulnerability in IBM Security Verify Access 10.0.0 IBM Security Verify Access Docker 10.0.0 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. | 6.5 |
| 2021-07-15 | CVE-2021-34688 | Use of Hard-coded Credentials vulnerability in Idrive Remotepc iDrive RemotePC before 7.6.48 on Windows allows information disclosure. | 3.3 |
| 2021-07-14 | CVE-2021-20748 | Use of Hard-coded Credentials vulnerability in Retty Retty App for Android versions prior to 4.8.13 and Retty App for iOS versions prior to 4.11.14 uses a hard-coded API key for an external service. | 7.5 |
| 2021-07-08 | CVE-2021-1574 | Use of Hard-coded Credentials vulnerability in Cisco Business Process Automation Multiple vulnerabilities in the web-based management interface of Cisco Business Process Automation (BPA) could allow an authenticated, remote attacker to elevate privileges to Administrator. | 8.8 |
| 2021-07-08 | CVE-2021-1576 | Use of Hard-coded Credentials vulnerability in Cisco Business Process Automation Multiple vulnerabilities in the web-based management interface of Cisco Business Process Automation (BPA) could allow an authenticated, remote attacker to elevate privileges to Administrator. | 8.8 |
| 2021-07-07 | CVE-2021-33218 | Use of Hard-coded Credentials vulnerability in Commscope Ruckus IOT Controller 1.7.1.0 An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. | 9.8 |