Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-05 | CVE-2014-3413 | Use of Hard-coded Credentials vulnerability in Juniper Junos Space 13.3 The MySQL server in Juniper Networks Junos Space before 13.3R1.8 has an unspecified account with a hardcoded password, which allows remote attackers to obtain sensitive information and consequently obtain administrative control by leveraging database access. | 9.8 |
| 2018-04-02 | CVE-2016-8717 | Use of Hard-coded Credentials vulnerability in Moxa Awk-3131A Firmware 1.1 An exploitable Use of Hard-coded Credentials vulnerability exists in the Moxa AWK-3131A Wireless Access Point running firmware 1.1. | 9.8 |
| 2018-04-01 | CVE-2018-9149 | Use of Hard-coded Credentials vulnerability in Zyxel Ac3000 Firmware The Zyxel Multy X (AC3000 Tri-Band WiFi System) device doesn't use a suitable mechanism to protect the UART. | 6.8 |
| 2018-03-31 | CVE-2018-9161 | Use of Hard-coded Credentials vulnerability in Prismaindustriale Checkweigher Prismaweb 1.21 Prisma Industriale Checkweigher PrismaWEB 1.21 allows remote attackers to discover the hardcoded prisma password for the prismaweb account by reading user/scripts/login_par.js. | 9.8 |
| 2018-03-28 | CVE-2018-0150 | Use of Hard-coded Credentials vulnerability in Cisco IOS XE 16.5.1 A vulnerability in Cisco IOS XE Software could allow an unauthenticated, remote attacker to log in to a device running an affected release of Cisco IOS XE Software with the default username and password that are used at initial boot, aka a Static Credential Vulnerability. | 9.8 |
| 2018-03-20 | CVE-2018-5768 | Use of Hard-coded Credentials vulnerability in Tendacn Ac15 Firmware A remote, unauthenticated attacker can gain remote code execution on the the Tenda AC15 router with a specially crafted password parameter for the COOKIE header. | 9.8 |
| 2018-03-20 | CVE-2017-14008 | Use of Hard-coded Credentials vulnerability in GE Centricity Pacs Ra1000 GE Centricity PACS RA1000, diagnostic image analysis, all current versions are affected these devices use default or hard-coded credentials. | 9.8 |
| 2018-03-20 | CVE-2017-14006 | Use of Hard-coded Credentials vulnerability in GE Xeleris GE Xeleris versions 1.0,1.1,2.1,3.0,3.1, medical imaging systems, all current versions are affected, these devices use default or hard-coded credentials. | 9.8 |
| 2018-03-20 | CVE-2017-14004 | Use of Hard-coded Credentials vulnerability in GE Gemnet License Server GE GEMNet License server (EchoServer) all current versions are affected these devices use default or hard-coded credentials. | 9.8 |
| 2018-03-20 | CVE-2017-14002 | Use of Hard-coded Credentials vulnerability in GE Infinia Hawkeye 4 Firmware GE Infinia/Infinia with Hawkeye 4 medical imaging systems all current versions are affected these devices use default or hard-coded credentials. | 9.8 |