Vulnerabilities > Use of Hard-coded Cryptographic Key
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-03-13 | CVE-2024-2413 | Intumit SmartRobot uses a fixed encryption key for authentication. | 9.8 |
| 2024-02-06 | CVE-2024-1258 | Use of Hard-coded Cryptographic Key vulnerability in Juanpao Jpshop A vulnerability was found in Juanpao JPShop up to 1.5.02. | 5.9 |
| 2023-11-14 | CVE-2023-44318 | Use of Hard-coded Cryptographic Key vulnerability in Siemens products Affected devices use a hardcoded key to obfuscate the configuration backup that an administrator can export from the device. | 4.9 |
| 2023-08-09 | CVE-2023-3632 | Use of Hard-coded Cryptographic Key vulnerability in Kunduz Use of Hard-coded Cryptographic Key vulnerability in Sifir Bes Education and Informatics Kunduz - Homework Helper App allows Authentication Abuse, Authentication Bypass.This issue affects Kunduz - Homework Helper App: before 6.2.3. | 9.8 |
| 2023-07-06 | CVE-2023-22844 | Use of Hard-coded Cryptographic Key vulnerability in Milesight Milesightvpn 2.0.2 An authentication bypass vulnerability exists in the requestHandlers.js verifyToken functionality of Milesight VPN v2.0.2. | 9.8 |
| 2022-12-02 | CVE-2022-2641 | Use of Hard-coded Cryptographic Key vulnerability in Hornerautomation Rcc972 Firmware 15.40 Horner Automation’s RCC 972 with firmware version 15.40 has a static encryption key on the device. | 9.8 |
| 2022-02-18 | CVE-2022-0664 | Use of Hard-coded Cryptographic Key vulnerability in Gravitl Netmaker Use of Hard-coded Cryptographic Key in Go github.com/gravitl/netmaker prior to 0.8.5,0.9.4,0.10.0,0.10.1. | 10.0 |
| 2021-12-27 | CVE-2021-43552 | Use of Hard-coded Cryptographic Key vulnerability in Philips Patient Information Center IX B.02/C.02/C.03 The use of a hard-coded cryptographic key significantly increases the possibility encrypted data may be recovered from the Patient Information Center iX (PIC iX) Versions B.02, C.02, and C.03. | 2.1 |
| 2021-12-21 | CVE-2021-43587 | Use of Hard-coded Cryptographic Key vulnerability in Dell Powerpath Management Appliance Dell PowerPath Management Appliance, versions 3.2, 3.1, 3.0 P01, 3.0, and 2.6, use hard-coded cryptographic key. | 7.2 |
| 2021-07-07 | CVE-2021-32520 | Use of Hard-coded Cryptographic Key vulnerability in Qsan Storage Manager Use of hard-coded cryptographic key vulnerability in QSAN Storage Manager allows attackers to obtain users’ credentials and related permissions. | 7.5 |