Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-06 | CVE-2020-24215 | Use of Hard-coded Credentials vulnerability in multiple products An issue was discovered in the box application on HiSilicon based IPTV/H.264/H.265 video encoders. | 9.8 |
| 2020-10-01 | CVE-2020-24620 | Use of Hard-coded Credentials vulnerability in Unisys Stealth Unisys Stealth(core) before 4.0.134 stores passwords in a recoverable format. | 7.8 |
| 2020-09-30 | CVE-2019-17098 | Use of Hard-coded Credentials vulnerability in August Home and Connect Wi-Fi Bridge Firmware Use of hard-coded cryptographic key vulnerability in August Connect Wi-Fi Bridge App, Connect Firmware allows an attacker to decrypt an intercepted payload containing the Wi-Fi network authentication credentials. | 6.5 |
| 2020-09-25 | CVE-2020-25749 | Use of Hard-coded Credentials vulnerability in Rubetek products The Telnet service of Rubetek cameras RV-3406, RV-3409, and RV-3411 cameras (firmware versions v342, v339) could allow an remote attacker to take full control of the device with a high-privileged account. | 9.8 |
| 2020-09-22 | CVE-2020-4622 | Use of Hard-coded Credentials vulnerability in IBM Data Risk Manager IBM Data Risk Manager (iDNA) 2.0.6 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. | 7.5 |
| 2020-09-22 | CVE-2020-11857 | Use of Hard-coded Credentials vulnerability in Microfocus Operation Bridge Reporter An Authorization Bypass vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and earlier. | 9.8 |
| 2020-09-14 | CVE-2020-12789 | Use of Hard-coded Credentials vulnerability in Microchip products The Secure Monitor in Microchip Atmel ATSAMA5 products use a hardcoded key to encrypt and authenticate secure applets. | 7.5 |
| 2020-09-14 | CVE-2018-20432 | Use of Hard-coded Credentials vulnerability in Dlink Covr-2600R Firmware and Covr-3902 Firmware D-Link COVR-2600R and COVR-3902 Kit before 1.01b05Beta01 use hardcoded credentials for telnet connection, which allows unauthenticated attackers to gain privileged access to the router, and to extract sensitive data or modify the configuration. | 9.8 |
| 2020-09-11 | CVE-2020-25256 | Use of Hard-coded Credentials vulnerability in Hyland Onbase An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. | 9.1 |
| 2020-09-09 | CVE-2018-17771 | Use of Hard-coded Credentials vulnerability in Ingenico Telium 2 Firmware Ingenico Telium 2 POS terminals have hardcoded FTP credentials. | 6.6 |