Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-05 | CVE-2024-39838 | Use of Hard-coded Credentials vulnerability in Zexelon Zwx-2000Csw2-Hn Firmware ZWX-2000CSW2-HN firmware versions prior to Ver.0.3.15 uses hard-coded credentials, which may allow a network-adjacent attacker with an administrative privilege to alter the configuration of the device. | 8.8 |
| 2024-08-02 | CVE-2024-33895 | Use of Hard-coded Credentials vulnerability in Hms-Networks Ewon Cosy+ Firmware Cosy+ devices running a firmware 21.x below 21.2s10 or a firmware 22.x below 22.1s3 use a unique key to encrypt the configuration parameters. | 6.6 |
| 2024-08-01 | CVE-2024-7332 | Use of Hard-coded Credentials vulnerability in Totolink Cp450 Firmware 4.1.0Cu.747B20191224 A vulnerability was found in TOTOLINK CP450 4.1.0cu.747_B20191224. | 9.8 |
| 2024-07-28 | CVE-2024-7170 | Use of Hard-coded Credentials vulnerability in Totolink A3000Ru Firmware 5.9C.5185B20201128 A vulnerability was found in TOTOLINK A3000RU 5.9c.5185. | 8.8 |
| 2024-07-28 | CVE-2024-7155 | Use of Hard-coded Credentials vulnerability in Totolink A3300R Firmware 17.0.0Cu.557B20221024 A vulnerability has been found in TOTOLINK A3300R 17.0.0cu.557_B20221024 and classified as problematic. | 4.7 |
| 2024-07-22 | CVE-2024-6912 | Use of Hard-coded Credentials vulnerability in Perkinelmer Processplus Use of hard-coded MSSQL credentials in PerkinElmer ProcessPlus on Windows allows an attacker to login remove on all prone installations.This issue affects ProcessPlus: through 1.11.6507.0. | 9.8 |
| 2024-07-17 | CVE-2024-5471 | Use of Hard-coded Credentials vulnerability in Zohocorp Manageengine DDI Central 4001 Zohocorp ManageEngine DDI Central versions 4001 and prior were vulnerable to agent takeover vulnerability due to the hard-coded sensitive keys. | 9.8 |
| 2024-07-16 | CVE-2024-35338 | Use of Hard-coded Credentials vulnerability in Tendacn I29 Firmware 1.0.0.5 Tenda i29V1.0 V1.0.0.5 was discovered to contain a hardcoded password for root. | 9.8 |
| 2024-07-02 | CVE-2024-4708 | Use of Hard-coded Credentials vulnerability in Myscada Mypro mySCADA myPRO uses a hard-coded password which could allow an attacker to remotely execute code on the affected device. | 9.8 |
| 2024-07-02 | CVE-2023-41919 | Use of Hard-coded Credentials vulnerability in Kiloview P1 Firmware and P2 Firmware Hardcoded credentials are discovered within the application's source code, creating a potential security risk for unauthorized access. | 9.8 |