Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-16 | CVE-2024-38466 | Use of Hard-coded Credentials vulnerability in Guoxinled Synthesis Image System Shenzhen Guoxin Synthesis image system before 8.3.0 has a 123456Qw default password. | 9.8 |
| 2024-06-13 | CVE-2024-38281 | Use of Hard-coded Credentials vulnerability in Motorola Vigilant Fixed LPR Coms BOX Firmware An attacker can access the maintenance console using hard coded credentials for a hidden wireless network on the device. | 9.8 |
| 2024-06-12 | CVE-2024-0865 | Use of Hard-coded Credentials vulnerability in Schneider-Electric Ecostruxure IT Gateway CWE-798: Use of hard-coded credentials vulnerability exists that could cause local privilege escalation when logged in as a non-administrative user. | 7.8 |
| 2024-06-10 | CVE-2024-1228 | Use of Hard-coded Credentials vulnerability in Eurosoft Przychodnia Use of hard-coded password to the patients' database allows an attacker to retrieve sensitive data stored in the database. | 9.8 |
| 2024-06-10 | CVE-2024-3699 | Use of Hard-coded Credentials vulnerability in Dreryk Gabinet 7.0.0.0 Use of hard-coded password to the patients' database allows an attacker to retrieve sensitive data stored in the database. | 9.8 |
| 2024-06-10 | CVE-2024-3700 | Use of Hard-coded Credentials vulnerability in Estomed Simple Care Use of hard-coded password to the patients' database allows an attacker to retrieve sensitive data stored in the database. | 9.8 |
| 2024-06-06 | CVE-2024-3408 | Use of Hard-coded Credentials vulnerability in MAN D-Tale 3.10.0 man-group/dtale version 3.10.0 is vulnerable to an authentication bypass and remote code execution (RCE) due to improper input validation. | 9.8 |
| 2024-05-14 | CVE-2024-23473 | The SolarWinds Access Rights Manager was found to contain a hard-coded credential authentication bypass vulnerability. | 8.6 |
| 2024-04-04 | CVE-2024-3272 | Use of Hard-coded Credentials vulnerability in Dlink products ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as very critical, has been found in D-Link DNS-320L, DNS-325, DNS-327L and DNS-340L up to 20240403. | 9.8 |
| 2024-02-20 | CVE-2024-1661 | Use of Hard-coded Credentials vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719 A vulnerability classified as problematic was found in Totolink X6000R 9.4.0cu.852_B20230719. | 5.5 |