Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-1188

CWE-1188

Initialization of a Resource with an Insecure Default

Parent: CWE-1419 - Incorrect Initialization of Resource

The product initializes or sets a resource with a default that is intended to be changed by the product's installer, administrator, or maintainer, but the default is not secure.

288 vulnerabilities with CWE-1188

CVE-2020-26930 LOW

NETGEAR EX7700 <1.0.0.210 - Info Disclosure

CVE-2020-24365 HIGH

Gemtek WRTM-127ACN/WRTM-127x9 - Command Injection

CVE-2020-0271 HIGH

Android 11 - Local Privilege Escalation and Tapjacking via Insecure Default Setting

CVE-2020-0394 HIGH

Android - Tapjacking via BluetoothPairingDialog Insecure Default

CVE-2020-0386 MEDIUM

Android - Local Privilege Escalation via Tapjacking in RequestPermissionActivity

CVE-2020-16873 MEDIUM

Microsoft Xamarin.Forms <83.0.4103.106 - SSRF

CVE-2020-7729 HIGH

grunt < 1.3.0 - Arbitrary Code Execution via Insecure YAML Deserialization

CVE-2020-7685 MEDIUM

Umbraco Forms - Insecure Default File Upload Configuration

CVE-2020-10279 CRITICAL

MiR and ER Robot Firmware < 2.8.1.1 - Race Condition and Privilege Escalation via Insecure Ubuntu Defaults

CVE-2020-14011 CRITICAL

Lansweeper <7.2.x - Command Injection

CVE-2020-11532 CRITICAL

ManageEngine ADAudit Plus Xnode Enumeration

CVE-2020-8828 HIGH

Argocd-server <1.5.0 - Privilege Escalation

CVE-2019-25219 HIGH

Asio C++ Library <1.13.0 - Info Disclosure

CVE-2019-20470 HIGH

TK-Star Q90 Junior GPS Horloge Firmware 3.1042.9.8656 - Unauthenticated SMS Command Injection via Default Password

CVE-2019-13393 HIGH

Voo NETGEAR CG3700b V2.02.03 - Info Disclosure

CVE-2019-17274 HIGH

NetApp FAS 8300/8700 and AFF A400 BMC - Command Injection

CVE-2019-1950 HIGH

Cisco IOS XE SD-WAN - Privilege Escalation

CVE-2019-16272 CRITICAL

DTEN D5-D7 <1.3.4 - Info Disclosure

CVE-2019-19340 HIGH

Ansible Tower <3.6.2-3.5.3 - Privilege Escalation

CVE-2019-19251 MEDIUM

Last.fm Scrobbler <2.1.39 - Info Disclosure

CVE-2019-4621 CRITICAL

IBM DataPower Gateway - Privilege Escalation

CVE-2019-2197 MEDIUM

Android 8.0-10 - Local Information Disclosure via CachedBluetoothDevice Insecure Default

CVE-2019-16102 CRITICAL

Silver Peak EdgeConnect <8.1.7.x - Info Disclosure

CVE-2019-14222 CRITICAL

Alfresco Community Edition <=6.0 - Auth Bypass

CVE-2019-4169 CRITICAL

IBM Open Power Firmware - Privilege Escalation

Previous Page 9 of 12 Next

Details

Vulnerabilities 288

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy