Vulnerabilities > Zyxel > Cloudcnm Secumanager > 3.1.1

DATE CVE VULNERABILITY TITLE RISK
2020-06-29 CVE-2020-15314 Use of Hard-coded Credentials vulnerability in Zyxel Cloudcnm Secumanager 3.1.0/3.1.1
Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has a hardcoded RSA SSH key for the root account.
network
zyxel CWE-798
4.3
4.3
2020-06-29 CVE-2020-15313 Use of Hard-coded Credentials vulnerability in Zyxel Cloudcnm Secumanager 3.1.0/3.1.1
Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has a hardcoded ECDSA SSH key for the root account.
network
zyxel CWE-798
4.3
4.3
2020-06-29 CVE-2020-15312 Use of Hard-coded Credentials vulnerability in Zyxel Cloudcnm Secumanager 3.1.0/3.1.1
Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has a hardcoded DSA SSH key for the root account.
network
zyxel CWE-798
4.3
4.3
2020-06-26 CVE-2020-15336 Missing Authentication for Critical Function vulnerability in Zyxel Cloudcnm Secumanager 3.1.0/3.1.1
Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has no authentication for /cnr requests.
network
low complexity
zyxel CWE-306
5.0
5.0
2020-06-26 CVE-2020-15335 Missing Authentication for Critical Function vulnerability in Zyxel Cloudcnm Secumanager 3.1.0/3.1.1
Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has no authentication for /registerCpe requests.
network
low complexity
zyxel CWE-306
5.0
5.0