Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-13 | CVE-2019-1723 | Use of Hard-coded Credentials vulnerability in Cisco Common Services Platform Collector A vulnerability in the Cisco Common Services Platform Collector (CSPC) could allow an unauthenticated, remote attacker to access an affected device by using an account that has a default, static password. | 9.8 |
| 2019-03-05 | CVE-2019-3918 | Use of Hard-coded Credentials vulnerability in Nokia I-240W-Q Gpon ONT Firmware 3Fe54567Bozj19 The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 contains multiple hard coded credentials for the Telnet and SSH interfaces. | 9.8 |
| 2019-02-21 | CVE-2018-1944 | Use of Hard-coded Credentials vulnerability in IBM Security Identity Governance and Intelligence IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. | 9.8 |
| 2019-02-20 | CVE-2019-8950 | Use of Hard-coded Credentials vulnerability in Dasannetworks H665 Firmware 1.46P10028 The backdoor account dnsekakf2$$ in /bin/login on DASAN H665 devices with firmware 1.46p1-0028 allows an attacker to login to the admin account via TELNET. | 9.8 |
| 2019-02-13 | CVE-2018-15781 | Use of Hard-coded Credentials vulnerability in Dell Wyse Thinlinux 2.0 The Dell Wyse Password Encoder in ThinLinux2 versions prior to 2.1.0.01 contain a Hard-coded Cryptographic Key vulnerability. | 8.0 |
| 2019-02-12 | CVE-2019-1688 | Use of Hard-coded Credentials vulnerability in Cisco Network Assurance Engine 3.0(1) A vulnerability in the management web interface of Cisco Network Assurance Engine (NAE) could allow an unauthenticated, local attacker to gain unauthorized access or cause a Denial of Service (DoS) condition on the server. | 7.1 |
| 2019-02-09 | CVE-2009-5154 | Use of Hard-coded Credentials vulnerability in Mobotix S14 Firmware Mxv4.2.1.61 An issue was discovered on MOBOTIX S14 MX-V4.2.1.61 devices. | 9.8 |
| 2019-02-07 | CVE-2019-1675 | Use of Hard-coded Credentials vulnerability in Cisco products A vulnerability in the default configuration of the Cisco Aironet Active Sensor could allow an unauthenticated, remote attacker to restart the sensor. | 7.5 |
| 2019-02-05 | CVE-2018-18998 | Use of Hard-coded Credentials vulnerability in Lcds Laquis Scada 4.1/4.1.0.3391/4.1.0.3870 LCDS Laquis SCADA prior to version 4.1.0.4150 uses hard coded credentials, which may allow an attacker unauthorized access to the system with high privileges. | 9.8 |
| 2019-01-31 | CVE-2018-5560 | Use of Hard-coded Credentials vulnerability in Guardzilla Gz521W Firmware A reliance on a static, hard-coded credential in the design of the cloud-based storage system of Practecol's Guardzilla All-In-One Video Security System allows an attacker to view the private data of all users of the Guardzilla device. | 7.5 |