Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-08 | CVE-2024-41161 | Use of Hard-coded Credentials vulnerability in Vonets products Use of hard-coded credentials vulnerability affecting Vonets industrial wifi bridge relays and WiFi bridge repeaters, software versions 3.3.23.6.9 and prior, enables an unauthenticated remote attacker to bypass authentication using hard-coded administrator credentials. | 9.8 |
| 2024-08-07 | CVE-2024-6890 | Use of Hard-coded Credentials vulnerability in Journyx 11.5.4 Password reset tokens are generated using an insecure source of randomness. | 8.8 |
| 2024-08-06 | CVE-2024-41616 | Use of Hard-coded Credentials vulnerability in Dlink Dir-300 Firmware 1.06B05Ww D-Link DIR-300 REVA FIRMWARE v1.06B05_WW contains hardcoded credentials in the Telnet service. | 9.8 |
| 2024-08-05 | CVE-2024-39838 | Use of Hard-coded Credentials vulnerability in Zexelon Zwx-2000Csw2-Hn Firmware ZWX-2000CSW2-HN firmware versions prior to Ver.0.3.15 uses hard-coded credentials, which may allow a network-adjacent attacker with an administrative privilege to alter the configuration of the device. | 8.8 |
| 2024-08-02 | CVE-2024-33895 | Use of Hard-coded Credentials vulnerability in Hms-Networks Ewon Cosy+ Firmware Cosy+ devices running a firmware 21.x below 21.2s10 or a firmware 22.x below 22.1s3 use a unique key to encrypt the configuration parameters. | 6.6 |
| 2024-08-01 | CVE-2024-7332 | Use of Hard-coded Credentials vulnerability in Totolink Cp450 Firmware 4.1.0Cu.747B20191224 A vulnerability was found in TOTOLINK CP450 4.1.0cu.747_B20191224. | 9.8 |
| 2024-07-28 | CVE-2024-7170 | Use of Hard-coded Credentials vulnerability in Totolink A3000Ru Firmware 5.9C.5185B20201128 A vulnerability was found in TOTOLINK A3000RU 5.9c.5185. | 8.8 |
| 2024-07-28 | CVE-2024-7155 | Use of Hard-coded Credentials vulnerability in Totolink A3300R Firmware 17.0.0Cu.557B20221024 A vulnerability has been found in TOTOLINK A3300R 17.0.0cu.557_B20221024 and classified as problematic. | 4.7 |
| 2024-07-22 | CVE-2024-6912 | Use of Hard-coded Credentials vulnerability in Perkinelmer Processplus Use of hard-coded MSSQL credentials in PerkinElmer ProcessPlus on Windows allows an attacker to login remove on all prone installations.This issue affects ProcessPlus: through 1.11.6507.0. | 9.8 |
| 2024-07-17 | CVE-2024-5471 | Use of Hard-coded Credentials vulnerability in Zohocorp Manageengine DDI Central 4001 Zohocorp ManageEngine DDI Central versions 4001 and prior were vulnerable to agent takeover vulnerability due to the hard-coded sensitive keys. | 9.8 |