Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-01-24 | CVE-2018-1959 | Use of Hard-coded Credentials vulnerability in IBM Security Identity Manager IBM Security Identity Manager 7.0.1 Virtual Appliance contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. | 7.8 |
| 2019-01-21 | CVE-2019-6499 | Use of Hard-coded Credentials vulnerability in Teradata Viewpoint 16.20.00.02B80 Teradata Viewpoint before 14.0 and 16.20.00.02-b80 contains a hardcoded password of TDv1i2e3w4 for the viewpoint database account (in viewpoint-portal\conf\server.xml) that could potentially be exploited by malicious users to compromise the affected system. | 8.1 |
| 2019-01-18 | CVE-2019-3908 | Use of Hard-coded Credentials vulnerability in Identicard Premisys ID 3.1.190 Premisys Identicard version 3.1.190 stores backup files as encrypted zip files. | 7.5 |
| 2019-01-18 | CVE-2019-3906 | Use of Hard-coded Credentials vulnerability in Identicard Premisys ID 3.1.190 Premisys Identicard version 3.1.190 contains hardcoded credentials in the WCF service on port 9003. | 8.8 |
| 2019-01-15 | CVE-2019-0022 | Use of Hard-coded Credentials vulnerability in Juniper Advanced Threat Prevention Juniper ATP ships with hard coded credentials in the Cyphort Core instance which gives an attacker the ability to take full control of any installation of the software. | 9.8 |
| 2019-01-15 | CVE-2019-0020 | Use of Hard-coded Credentials vulnerability in Juniper Advanced Threat Prevention Juniper ATP ships with hard coded credentials in the Web Collector instance which gives an attacker the ability to take full control of any installation of the software. | 9.8 |
| 2019-01-09 | CVE-2018-16201 | Use of Hard-coded Credentials vulnerability in Toshiba Hem-Gw16A Firmware and Hem-Gw26A Firmware Toshiba Home gateway HEM-GW16A 1.2.9 and earlier, Toshiba Home gateway HEM-GW26A 1.2.9 and earlier uses hard-coded credentials, which may allow an attacker on the same network segment to login to the administrators settings screen and change the configuration or execute arbitrary OS commands. | 8.8 |
| 2019-01-09 | CVE-2018-16186 | Use of Hard-coded Credentials vulnerability in Ricoh products RICOH Interactive Whiteboard D2200 V1.1 to V2.2, D5500 V1.1 to V2.2, D5510 V1.1 to V2.2, the display versions with RICOH Interactive Whiteboard Controller Type1 V1.1 to V2.2 attached (D5520, D6500, D6510, D7500, D8400), and the display versions with RICOH Interactive Whiteboard Controller Type2 V3.0 to V3.1.10137.0 attached (D5520, D6510, D7500, D8400) uses hard-coded credentials, which may allow an attacker on the same network segments to login to the administrators settings screen and change the configuration. | 8.8 |
| 2018-12-28 | CVE-2018-1000625 | Use of Hard-coded Credentials vulnerability in Battelle V2I HUB 2.5.1 Battelle V2I Hub 2.5.1 contains hard-coded credentials for the administrative account. | 9.8 |
| 2018-12-24 | CVE-2018-7800 | Use of Hard-coded Credentials vulnerability in Schneider-Electric Evlink Parking Firmware 3.1.133/3.2.012 A Hard-coded Credentials vulnerability exists in EVLink Parking, v3.2.0-12_v1 and earlier, which could enable an attacker to gain access to the device. | 9.8 |