Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-30 | CVE-2020-10206 | Use of Hard-coded Credentials vulnerability in Amino products Use of a Hard-coded Password in VNCserver in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows local attackers to view and interact with the video output of the device. | 4.4 |
| 2020-12-29 | CVE-2020-10210 | Use of Hard-coded Credentials vulnerability in Amino products Because of hard-coded SSH keys for the root user in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series, Kami7B, an attacker may remotely log in through SSH. | 9.8 |
| 2020-12-29 | CVE-2020-10207 | Use of Hard-coded Credentials vulnerability in Amino products Use of Hard-coded Credentials in EntoneWebEngine in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows remote attackers to retrieve and modify the device settings. | 9.8 |
| 2020-12-28 | CVE-2020-29193 | Use of Hard-coded Credentials vulnerability in Panasonic Wv-S2231L Firmware 4.25 Panasonic Security System WV-S2231L 4.25 has an insecure hard-coded password of lkjhgfdsa (which is just the asdf keyboard row in reverse order). | 6.8 |
| 2020-12-24 | CVE-2020-2499 | Use of Hard-coded Credentials vulnerability in Qnap QES A hard-coded password vulnerability has been reported to affect earlier versions of QES. | 7.2 |
| 2020-12-23 | CVE-2020-11719 | Use of Hard-coded Credentials vulnerability in Bilanc 01431.01.2020 An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and possibly below. | 7.5 |
| 2020-12-23 | CVE-2020-11720 | Use of Hard-coded Credentials vulnerability in Bilanc 01431.01.2020 An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and possibly below. | 9.8 |
| 2020-12-21 | CVE-2020-8995 | Use of Hard-coded Credentials vulnerability in Bilanc 01431.01.2020 Programi Bilanc Build 007 Release 014 31.01.2020 supplies a .exe file containing several hardcoded credentials to different servers that allow remote attackers to gain access to the complete infrastructure including the website, update server, and external issue tracking tools. | 9.8 |
| 2020-12-21 | CVE-2020-6882 | Use of Hard-coded Credentials vulnerability in ZTE products ZTE E8810/E8820/E8822 series routers have an information leak vulnerability, which is caused by hard-coded MQTT service access credentials on the device. | 7.5 |
| 2020-12-16 | CVE-2019-14482 | Use of Hard-coded Credentials vulnerability in Adremsoft Netcrunch AdRem NetCrunch 10.6.0.4587 has a hardcoded SSL private key vulnerability in the NetCrunch web client. | 9.8 |