Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-26 | CVE-2020-25173 | Use of Hard-coded Credentials vulnerability in Reolink products An attacker with local network access can obtain a fixed cryptography key which may allow for further compromise of Reolink P2P cameras outside of local network access | 7.8 |
| 2021-01-20 | CVE-2021-1219 | Use of Hard-coded Credentials vulnerability in Cisco Smart Software Manager On-Prem 5.0/5.1.0 A vulnerability in Cisco Smart Software Manager Satellite could allow an authenticated, local attacker to access sensitive information on an affected system. | 7.8 |
| 2021-01-20 | CVE-2020-4983 | Use of Hard-coded Credentials vulnerability in IBM Spectrum LSF and Spectrum LSF Suite IBM Spectrum LSF 10.1 and IBM Spectrum LSF Suite 10.2 could allow a user on the local network who has privileges to submit LSF jobs to execute arbitrary commands. | 7.8 |
| 2021-01-19 | CVE-2020-27256 | Use of Hard-coded Credentials vulnerability in Sooil products In SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A, a hard-coded physician PIN in the physician menu of the insulin pump allows attackers with physical access to change insulin therapy settings. | 6.8 |
| 2021-01-19 | CVE-2020-35929 | Use of Hard-coded Credentials vulnerability in Kaspersky Tinycheck In TinyCheck before commits 9fd360d and ea53de8, the installation script of the tool contained hard-coded credentials to the backend part of the tool. | 9.8 |
| 2020-12-30 | CVE-2020-10206 | Use of Hard-coded Credentials vulnerability in Amino products Use of a Hard-coded Password in VNCserver in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows local attackers to view and interact with the video output of the device. | 4.4 |
| 2020-12-29 | CVE-2020-10210 | Use of Hard-coded Credentials vulnerability in Amino products Because of hard-coded SSH keys for the root user in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series, Kami7B, an attacker may remotely log in through SSH. | 9.8 |
| 2020-12-29 | CVE-2020-10207 | Use of Hard-coded Credentials vulnerability in Amino products Use of Hard-coded Credentials in EntoneWebEngine in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows remote attackers to retrieve and modify the device settings. | 9.8 |
| 2020-12-28 | CVE-2020-29193 | Use of Hard-coded Credentials vulnerability in Panasonic Wv-S2231L Firmware 4.25 Panasonic Security System WV-S2231L 4.25 has an insecure hard-coded password of lkjhgfdsa (which is just the asdf keyboard row in reverse order). | 6.8 |
| 2020-12-24 | CVE-2020-2499 | Use of Hard-coded Credentials vulnerability in Qnap QES A hard-coded password vulnerability has been reported to affect earlier versions of QES. | 7.2 |