Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-21 | CVE-2019-3497 | Use of Hard-coded Credentials vulnerability in Indionetworks Unibox Firmware An issue was discovered on Wifi-soft UniBox controller 0.x through 2.x devices. | 8.8 |
| 2019-03-21 | CVE-2019-3496 | Use of Hard-coded Credentials vulnerability in Indionetworks Unibox Firmware An issue was discovered on Wifi-soft UniBox controller 3.x devices. | 8.8 |
| 2019-03-21 | CVE-2018-20219 | Use of Hard-coded Credentials vulnerability in Teracue products An issue was discovered on Teracue ENC-400 devices with firmware 2.56 and below. | 8.1 |
| 2019-03-21 | CVE-2018-18473 | Use of Hard-coded Credentials vulnerability in Patlite products A hidden backdoor on PATLITE NH-FB Series devices with firmware version 1.45 or earlier, NH-FV Series devices with firmware version 1.10 or earlier, and NBM Series devices with firmware version 1.09 or earlier allow attackers to enable an SSH daemon via the "kankichi" or "kamiyo4" password to the _secret1.htm URI. | 9.8 |
| 2019-03-21 | CVE-2018-17492 | Use of Hard-coded Credentials vulnerability in Hidglobal Easylobby Solo 11.0.4563 EasyLobby Solo contains default administrative credentials. | 7.8 |
| 2019-03-13 | CVE-2019-1723 | Use of Hard-coded Credentials vulnerability in Cisco Common Services Platform Collector A vulnerability in the Cisco Common Services Platform Collector (CSPC) could allow an unauthenticated, remote attacker to access an affected device by using an account that has a default, static password. | 9.8 |
| 2019-03-05 | CVE-2019-3918 | Use of Hard-coded Credentials vulnerability in Nokia I-240W-Q Gpon ONT Firmware 3Fe54567Bozj19 The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 contains multiple hard coded credentials for the Telnet and SSH interfaces. | 9.8 |
| 2019-02-21 | CVE-2018-1944 | Use of Hard-coded Credentials vulnerability in IBM Security Identity Governance and Intelligence IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. | 9.8 |
| 2019-02-20 | CVE-2019-8950 | Use of Hard-coded Credentials vulnerability in Dasannetworks H665 Firmware 1.46P10028 The backdoor account dnsekakf2$$ in /bin/login on DASAN H665 devices with firmware 1.46p1-0028 allows an attacker to login to the admin account via TELNET. | 9.8 |
| 2019-02-13 | CVE-2018-15781 | Use of Hard-coded Credentials vulnerability in Dell Wyse Thinlinux 2.0 The Dell Wyse Password Encoder in ThinLinux2 versions prior to 2.1.0.01 contain a Hard-coded Cryptographic Key vulnerability. | 8.0 |