Vulnerabilities > Use of Hard-coded Credentials
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-03-09 | CVE-2018-7229 | Use of Hard-coded Credentials vulnerability in Schneider-Electric products A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow an unauthenticated, remote attacker to bypass authentication and gain administrator privileges because the use of hardcoded credentials. | 9.8 |
| 2018-03-09 | CVE-2014-6617 | Use of Hard-coded Credentials vulnerability in Industrial.Softing Fg-100 PB Profibus Firmware Fgx00Pbv2.02.0.00 Softing FG-100 PB PROFIBUS firmware version FG-x00-PB_V2.02.0.00 contains a hardcoded password for the root account, which allows remote attackers to obtain administrative access via a TELNET session. | 9.8 |
| 2018-03-08 | CVE-2018-1216 | Use of Hard-coded Credentials vulnerability in Dell products A hard-coded password vulnerability was discovered in vApp Manager which is embedded in Dell EMC Unisphere for VMAX, Dell EMC Solutions Enabler, Dell EMC VASA Virtual Appliances, and Dell EMC VMAX Embedded Management (eManagement): Dell EMC Unisphere for VMAX Virtual Appliance versions prior to 8.4.0.18, Dell EMC Solutions Enabler Virtual Appliance versions prior to 8.4.0.21, Dell EMC VASA Virtual Appliance versions prior to 8.4.0.514, and Dell EMC VMAX Embedded Management (eManagement) versions prior to and including 1.4 (Enginuity Release 5977.1125.1125 and earlier). | 9.8 |
| 2018-03-08 | CVE-2018-0141 | Use of Hard-coded Credentials vulnerability in Cisco products A vulnerability in Cisco Prime Collaboration Provisioning (PCP) Software 11.6 could allow an unauthenticated, local attacker to log in to the underlying Linux operating system. | 8.4 |
| 2018-03-02 | CVE-2017-1787 | Use of Hard-coded Credentials vulnerability in IBM Rational Publishing Engine 2.1.2/6.0.5 IBM Publishing Engine 2.1.2 and 6.0.5 contains an undisclosed vulnerability that could allow a local user with administrative privileges to obtain hard coded user credentials. | 6.7 |
| 2018-03-01 | CVE-2018-7047 | Use of Hard-coded Credentials vulnerability in Wowza Streaming Engine An issue was discovered in the MBeans Server in Wowza Streaming Engine before 4.7.1. | 9.8 |
| 2018-02-26 | CVE-2017-11634 | Use of Hard-coded Credentials vulnerability in - Wireless IP Camera 360 An issue was discovered on Wireless IP Camera 360 devices. | 9.8 |
| 2018-02-26 | CVE-2017-11632 | Use of Hard-coded Credentials vulnerability in - Wireless IP Camera 360 An issue was discovered on Wireless IP Camera 360 devices. | 9.8 |
| 2018-02-23 | CVE-2014-3205 | Use of Hard-coded Credentials vulnerability in Seagate products backupmgt/pre_connect_check.php in Seagate BlackArmor NAS contains a hard-coded password of '!~@##$$%FREDESWWSED' for a backdoor user. | 9.8 |
| 2018-02-20 | CVE-2015-9254 | Use of Hard-coded Credentials vulnerability in Datto products Datto ALTO and SIRIS devices have a default VNC password. | 9.8 |