Vulnerabilities > Use of Hard-coded Credentials

DATE CVE VULNERABILITY TITLE RISK
2024-06-10 CVE-2024-3699 Use of Hard-coded Credentials vulnerability in Dreryk Gabinet 7.0.0.0
Use of hard-coded password to the patients' database allows an attacker to retrieve sensitive data stored in the database.
network
low complexity
dreryk CWE-798
critical
9.8
2024-06-10 CVE-2024-3700 Use of Hard-coded Credentials vulnerability in Estomed Simple Care
Use of hard-coded password to the patients' database allows an attacker to retrieve sensitive data stored in the database.
network
low complexity
estomed CWE-798
critical
9.8
2024-05-03 CVE-2023-51629 Use of Hard-coded Credentials vulnerability in Dlink Dcs-8300Lhv2 Firmware
D-Link DCS-8300LHV2 ONVIF Hardcoded PIN Authentication Bypass Vulnerability.
low complexity
dlink CWE-798
8.8
2024-05-03 CVE-2023-34284 Use of Hard-coded Credentials vulnerability in Netgear Rax30 Firmware
NETGEAR RAX30 Use of Hard-coded Credentials Authentication Bypass Vulnerability.
low complexity
netgear CWE-798
6.3
2024-04-19 CVE-2024-29966 Use of Hard-coded Credentials vulnerability in Broadcom Brocade Sannav
Brocade SANnav OVA before v2.3.1 and v2.3.0a contain hard-coded credentials in the documentation that appear as the appliance's root password.
network
low complexity
broadcom CWE-798
critical
9.8
2024-04-19 CVE-2024-29960 Use of Hard-coded Credentials vulnerability in Broadcom Brocade Sannav
In Brocade SANnav server before v2.3.1 and v2.3.0a, the SSH keys inside the OVA image are identical in the VM every time SANnav is installed.
high complexity
broadcom CWE-798
7.5
2024-04-19 CVE-2024-29963 Use of Hard-coded Credentials vulnerability in Broadcom Brocade Sannav
Brocade SANnav OVA before v2.3.1, and v2.3.0a, contain hardcoded TLS keys used by Docker.
local
low complexity
broadcom CWE-798
3.8
2024-04-17 CVE-2024-21990 Use of Hard-coded Credentials vulnerability in Netapp Ontap Select Deploy Administration Utility
ONTAP Select Deploy administration utility versions 9.12.1.x, 9.13.1.x and 9.14.1.x contain hard-coded credentials that could allow an attacker to view Deploy configuration information and modify the account credentials.
network
low complexity
netapp CWE-798
critical
9.8
2024-03-18 CVE-2024-27774 Use of Hard-coded Credentials vulnerability in Unitronics Unilogic
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-259: Use of Hard-coded Password may allow disclosing Sensitive Information Embedded inside Device's Firmware
network
low complexity
unitronics CWE-798
6.5
2024-03-13 CVE-2023-38535 Use of Hard-coded Credentials vulnerability in Opentext Exceed Turbox 12.5.0/12.5.1
Use of Hard-coded Cryptographic Key vulnerability in OpenText™ Exceed Turbo X affecting versions 12.5.1 and 12.5.2.
network
low complexity
opentext CWE-798
critical
9.8