CWE-259

High likelihood

Use of Hard-coded Password

Parent: CWE-798 - Use of Hard-coded Credentials

The product contains a hard-coded password, which it uses for its own inbound authentication or for outbound communication to external components.

194 vulnerabilities with CWE-259
CVE-2025-44955 HIGH
RUCKUS Network Director <4.5 - Privilege Escalation
CVSS 8.8
CVE-2025-36609 LOW
Dell SmartFabric OS10 <10.6.0.5 - Privilege Escalation
CVSS 2.5
CVE-2025-8231 MEDIUM
D-Link DIR-890L <111b04 - Hard-Coded Credentials
CVSS 6.8
CVE-2025-7577 LOW
Teledyne FLIR FB-Series O/FH-Series ID 1.3.2.16 - Hard-Coded Password
CVSS 3.7
CVE-2025-7564 HIGH
LB-LINK BL-AC3600 1.0.22 - Hard-coded Credentials
CVSS 7.8
CVE-2025-7453 LOW
saltbo zpan <1.6.5/1.7.0-beta2 - Use After Free
CVSS 3.7
CVE-2025-3920 HIGH
SUR-FBD CMMS <2025.03.27 - Info Disclosure
CVE-2025-7080 LOW
Done-0 Jank <322caebbad10568460364b9667aa62c3080bfc17 - Use After Free
CVSS 3.7
CVE-2025-7079 LOW
mao888 bluebell-plus < 2.3.0 - Hard-coded Password in JWT Token Handler
CVSS 3.7
CVE-2025-6932 LOW
D-Link DCS-7517 <2.02.0 - Use of Hard-Coded Password
CVSS 3.7
CVE-2025-47823 LOW
Flock Safety LPR <2.2 - Info Disclosure
CVSS 2.2
CVE-2025-47821 LOW
Flock Safety Gunshot Detection <1.3 - Info Disclosure
CVSS 2.2
CVE-2025-47818 LOW
Flock Safety Gunshot Detection <1.3 - Info Disclosure
CVSS 2.2
CVE-2025-6139 LOW
TOTOLINK T10 4.1.8cu.5207 - Use After Free
CVSS 3.9
CVE-2025-20286 CRITICAL
Cisco Identity Services Engine - Unauthenticated Sensitive Data Access via Shared Cloud Credentials
CVSS 9.9
CVE-2025-5379 MEDIUM
NuCom NC-WR744G 8.5.5 Build 20200530.307 - Hard-Coded Credentials
CVSS 4.3
CVE-2025-47748 MEDIUM
Netwrix Directory Manager <11.1.25134.03 - Info Disclosure
CVSS 5.3
CVE-2025-28031 MEDIUM
TOTOLINK A810R V4.1.2cu.5182_B20201026 - Info Disclosure
CVSS 6.5
CVE-2025-25984 MEDIUM
Macro-video Technologies Co.,Ltd V380E6_C1 - RCE
CVSS 6.8
CVE-2025-2402 HIGH
KNIME Business Hub < 1.10.3 - Unauthenticated Hard-coded Password in Object Store
CVSS 8.6
CVE-2025-2556 MEDIUM
Audi UTR Dashcam <2.89-2.90 - Info Disclosure
CVSS 4.3
CVE-2025-2555 LOW
Audi Universal Traffic Recorder App <2.89-2.90 - Hard-Coded Password
CVSS 2.9
CVE-2025-30115 CRITICAL
Forvia Hella HELLA Driving Recorder DR 820 - Info Disclosure
CVSS 9.8
CVE-2025-30106 HIGH
IROAD v9 - Use of Hard-coded Password
CVSS 8.8
CVE-2025-2343 HIGH
IROAD Dash Cam X5-X6 <20250308 - Hard-coded Credentials
CVSS 7.5
Details
Vulnerabilities 194
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits