Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-22 | CVE-2021-38461 | Use of Hard-coded Credentials vulnerability in Auvesy Versiondog The affected product uses a hard-coded blowfish key for encryption/decryption processes. | 8.2 |
| 2021-10-15 | CVE-2021-41320 | Use of Hard-coded Credentials vulnerability in Iongroup Wallstreet Suite 7.4.83 A technical user has hardcoded credentials in Wallstreet Suite TRM 7.4.83 (64-bit edition) with higher privilege than the average authenticated user. | 5.5 |
| 2021-10-12 | CVE-2021-38456 | Use of Hard-coded Credentials vulnerability in Moxa Mxview A use of hard-coded password vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to gain access through accounts using default passwords | 9.8 |
| 2021-10-06 | CVE-2021-34744 | Use of Hard-coded Credentials vulnerability in Cisco products Multiple vulnerabilities in Cisco Business 220 Series Smart Switches firmware could allow an attacker with Administrator privileges to access sensitive login credentials or reconfigure the passwords on the user account. | 4.9 |
| 2021-10-06 | CVE-2021-34757 | Use of Hard-coded Credentials vulnerability in Cisco products Multiple vulnerabilities in Cisco Business 220 Series Smart Switches firmware could allow an attacker with Administrator privileges to access sensitive login credentials or reconfigure the passwords on the user account. | 5.5 |
| 2021-09-30 | CVE-2021-33583 | Use of Hard-coded Credentials vulnerability in Reiner-Sct Timecard 6.05.07 REINER timeCard 6.05.07 installs a Microsoft SQL Server with an sa password that is hardcoded in the TCServer.jar file. | 9.8 |
| 2021-09-30 | CVE-2021-41299 | Use of Hard-coded Credentials vulnerability in Ecoa products ECOA BAS controller is vulnerable to hard-coded credentials within its Linux distribution image, thus remote attackers can obtain administrator’s privilege without logging in. | 9.8 |
| 2021-09-30 | CVE-2021-41827 | Use of Hard-coded Credentials vulnerability in Zohocorp Manageengine Remote Access Plus Zoho ManageEngine Remote Access Plus before 10.1.2121.1 has hardcoded credentials for read-only access. | 7.5 |
| 2021-09-30 | CVE-2021-41828 | Use of Hard-coded Credentials vulnerability in Zohocorp Manageengine Remote Access Plus Zoho ManageEngine Remote Access Plus before 10.1.2121.1 has hardcoded credentials associated with resetPWD.xml. | 7.5 |
| 2021-09-23 | CVE-2020-4690 | Use of Hard-coded Credentials vulnerability in IBM Security Guardium 11.3 IBM Security Guardium 11.3 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. | 9.8 |