Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-03 | CVE-2021-21979 | Use of Hard-coded Credentials vulnerability in Bitnami Containers In Bitnami Containers, all Laravel container versions prior to: 6.20.0-debian-10-r107 for Laravel 6, 7.30.1-debian-10-r108 for Laravel 7 and 8.5.11-debian-10-r0 for Laravel 8, the file /tmp/app/.env is generated at the time that the docker image bitnami/laravel was built, and the value of APP_KEY is fixed under certain conditions. | 7.3 |
| 2021-03-03 | CVE-2021-20442 | Use of Hard-coded Credentials vulnerability in IBM Security Verify Bridge IBM Security Verify Bridge contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. | 7.5 |
| 2021-03-03 | CVE-2020-35296 | Use of Hard-coded Credentials vulnerability in Thinkadmin 6.0 ThinkAdmin v6 has default administrator credentials, which allows attackers to gain unrestricted administratior dashboard access. | 7.5 |
| 2021-02-27 | CVE-2019-25021 | Use of Hard-coded Credentials vulnerability in Scytl Secure Vote 2.1 An issue was discovered in Scytl sVote 2.1. | 7.5 |
| 2021-02-24 | CVE-2020-7846 | Use of Hard-coded Credentials vulnerability in Cnesty Helpcom Helpcom before v10.0 contains a file download and execution vulnerability caused by storing hardcoded cryptographic key. | 8.8 |
| 2021-02-22 | CVE-2021-27228 | Use of Hard-coded Credentials vulnerability in Shinobi PRO An issue was discovered in Shinobi through ocean version 1. | 9.8 |
| 2021-02-17 | CVE-2020-12376 | Use of Hard-coded Credentials vulnerability in Intel BMC Firmware 1.06.06 Use of hard-coded key in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow authenticated user to potentially enable information disclosure via local access. | 5.5 |
| 2021-02-16 | CVE-2020-35567 | Use of Hard-coded Credentials vulnerability in Mbconnectline Mbconnect24 and Mymbconnect24 An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. | 7.8 |
| 2021-02-12 | CVE-2021-20412 | Use of Hard-coded Credentials vulnerability in IBM Security Verify Information Queue 1.0.6/1.0.7 IBM Security Verify Information Queue 1.0.6 and 1.0.7 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. | 7.5 |
| 2021-02-10 | CVE-2021-27172 | Use of Hard-coded Credentials vulnerability in Fiberhome Hg6245D Firmware Rp2613 An issue was discovered on FiberHome HG6245D devices through RP2613. | 9.8 |