Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-09 | CVE-2018-17771 | Use of Hard-coded Credentials vulnerability in Ingenico Telium 2 Firmware Ingenico Telium 2 POS terminals have hardcoded FTP credentials. | 6.6 |
| 2020-09-09 | CVE-2018-17767 | Use of Hard-coded Credentials vulnerability in Ingenico Telium 2 Firmware Ingenico Telium 2 POS terminals have hardcoded PPP credentials. | 6.8 |
| 2020-09-03 | CVE-2020-24876 | Use of Hard-coded Credentials vulnerability in Pancakeapp Pancake Use of a hard-coded cryptographic key in Pancake versions < 4.13.29 allows an attacker to forge session cookies, which may lead to remote privilege escalation. | 9.8 |
| 2020-08-31 | CVE-2020-24115 | Use of Hard-coded Credentials vulnerability in Online Book Store Project Online Book Store 1.0 In projectworlds Online Book Store 1.0 Use of Hard-coded Credentials in source code leads to admin panel access. | 9.8 |
| 2020-08-26 | CVE-2019-4694 | Use of Hard-coded Credentials vulnerability in IBM products IBM Security Guardium Data Encryption (GDE) 3.0.0.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. | 9.8 |
| 2020-08-26 | CVE-2020-3446 | Use of Hard-coded Credentials vulnerability in Cisco products A vulnerability in Cisco Virtual Wide Area Application Services (vWAAS) with Cisco Enterprise NFV Infrastructure Software (NFVIS)-bundled images for Cisco ENCS 5400-W Series and CSP 5000-W Series appliances could allow an unauthenticated, remote attacker to log into the NFVIS CLI of an affected device by using accounts that have a default, static password. | 9.8 |
| 2020-08-25 | CVE-2020-14510 | Use of Hard-coded Credentials vulnerability in Secomea Gatemanager 8250 Firmware 9.2C GateManager versions prior to 9.2c, The affected product contains a hard-coded credential for telnet, allowing an unprivileged attacker to execute commands as root. | 9.8 |
| 2020-08-21 | CVE-2020-24056 | Use of Hard-coded Credentials vulnerability in Verint 4320 Firmware, 5620Ptz Firmware and S5120Fd Firmware A hardcoded credentials vulnerability exists in Verint 5620PTZ Verint_FW_0_42, Verint 4320 V4320_FW_0_23, V4320_FW_0_31, and Verint S5120FD Verint_FW_0_42units. | 7.5 |
| 2020-08-21 | CVE-2020-24053 | Use of Hard-coded Credentials vulnerability in Moog Exvf5C-2 Firmware and Exvp7C2-3 Firmware Moog EXO Series EXVF5C-2 and EXVP7C2-3 units have a hardcoded credentials vulnerability. | 7.5 |
| 2020-08-21 | CVE-2020-24574 | Use of Hard-coded Credentials vulnerability in GOG Galaxy The client (aka GalaxyClientService.exe) in GOG GALAXY through 2.0.41 (as of 12:58 AM Eastern, 9/26/21) allows local privilege escalation from any authenticated user to SYSTEM by instructing the Windows service to execute arbitrary commands. | 7.8 |