CWE-1392

Use of Default Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product uses default credentials (such as passwords or cryptographic keys) for potentially critical functionality.

98 vulnerabilities with CWE-1392
CVE-2026-50005 HIGH
Brickcom Cameras Use of Default Credentials
CVSS 7.7
CVE-2026-9844 HIGH
Roche navify Digital Pathology 2.0.0 to Before 2.4.1 - Default Credentials
CVE-2026-42941 HIGH
MacGregor Voyage Data Recorder (VDR) G4e Use of Default Credentials
CVSS 8.3
CVE-2026-45039 CRITICAL
RustFS: Internode RPC HMAC secret falls back to public default credential, enabling peer impersonation
CVSS 9.8
CVE-2026-7365 HIGH
IBM Operations Analytics - Log Analysis is affected by Information disclosure due to default passwords not being forced to be changed on post-installation
CVSS 8.4
CVE-2026-44159 CRITICAL
Tyler Identity Local (TID-L) default administrative credentials
CVSS 9.8
CVE-2026-7428 CRITICAL
Insecure default administrative credentials in AlloyDB for PostgreSQL
CVE-2026-42072 CRITICAL
Nornicdb: Improper Network Binding in NornicDB Bolt Server allows unauthorized remote access
CVSS 9.8
CVE-2026-28713 HIGH
Acronis Cyber Protect - Auth Bypass
CVSS 7.1
CVE-2026-22886 CRITICAL
Eclipse OpenMQ - Use of Weak Credentials via Default Admin Account
CVSS 9.8
CVE-2026-27751 CRITICAL
SODOLA SL902-SWTGW124AS <200.1.20 - Auth Bypass
CVSS 9.8
CVE-2026-26341 CRITICAL
Tattile Smart+/Vega/Basic <1.181.5 - Auth Bypass
CVSS 9.8
CVE-2026-26366 CRITICAL
eNet SMART HOME 2.2.1/2.3.1 - Auth Bypass
CVSS 9.8
CVE-2026-1972 MEDIUM
Edimax BR-6208AC 2_1.02 - Info Disclosure
CVSS 5.3
CVE-2026-1803 HIGH
Ziroom ZHOME A0101 1.0.1.0 - Default Credentials
CVSS 8.1
CVE-2026-22273 HIGH
Dell ECS <3.8.1.7 & Dell ObjectScale <4.2.0.0 - Privilege Escalation
CVSS 8.8
CVE-2025-36221 MEDIUM
Vulnerabilities exists in IBM Cloud Pak for Data System (CPDS 1.0) - Cyclops.
CVSS 5.3
CVE-2025-54756 HIGH
BrightSign OS <8.5.53.1,9.0.166 - Info Disclosure
CVSS 8.4
CVE-2025-7740 HIGH
Hitachi Energy SuprOS 9.0.0-9.2.2.0 - Use of Default Credentials
CVE-2025-59108 CRITICAL
Access Manager - Info Disclosure
CVE-2025-58744 HIGH
Milner ImageDirector Capture <7.6.3.25808 - Default Credentials
CVSS 7.5
CVE-2025-54303 CRITICAL
Thermo Fisher Torrent Suite Django 5.18.1 - Info Disclosure
CVSS 9.8
CVE-2025-12592 CRITICAL
Legacy Vivotek Device - Info Disclosure
CVE-2025-12218 CRITICAL
BLU-IC2, IC4 <1.19.5 - Info Disclosure
CVSS 9.1
CVE-2025-12217 CRITICAL
BLU-IC2 and BLU-IC4 Firmware < 1.20 - Use of Default SNMP Community String
CVSS 9.1
Details
Vulnerabilities 98
Links
MITRE CWE Entry Search this CWE With Exploits