CWE-259

High likelihood

Use of Hard-coded Password

Parent: CWE-798 - Use of Hard-coded Credentials

The product contains a hard-coded password, which it uses for its own inbound authentication or for outbound communication to external components.

194 vulnerabilities with CWE-259
CVE-2025-2342 MEDIUM
IROAD X5 Mobile App <5.2.5 - Hard-Coded Credentials
CVSS 5.3
CVE-2025-2322 HIGH
springboot-openai-chatgpt - Hard-Coded Credentials
CVSS 7.3
CVE-2025-27638 CRITICAL
Vasion Print <22.0.1002 - Info Disclosure
CVSS 9.8
CVE-2025-1879 LOW
i-Drive i11-i12 <20250227 - Hard-Coded Credentials
CVSS 2.4
CVE-2025-25428 HIGH
TRENDnet TEW-929DRU 1.0.0.10 - Info Disclosure
CVSS 8.0
CVE-2025-1100 CRITICAL
Q-Free MaxTime <= 2.11.0 - Unauthenticated Remote Code Execution via Hard-coded Root Password
CVSS 9.8
CVE-2024-48831 HIGH
Dell SmartFabric OS10 <10.5.6 - Info Disclosure
CVSS 8.4
CVE-2024-4996 CRITICAL
Wapro ERP <8.90.0 - Info Disclosure
CVSS 9.8
CVE-2024-11630 HIGH
E-Lins H685-H900 <3.2 - Hard-coded Credentials
CVSS 7.3
CVE-2024-11026 LOW
Freenow App 12.10.0 - Use of Hard-coded Password in Keystore Handler
CVSS 3.7
CVE-2024-20412 CRITICAL
Cisco Firepower Threat Defense - Static Credential Authentication Bypass
CVSS 9.3
CVE-2024-25825 CRITICAL
FydeOS and OpenFyde R114 - Use of Hard-coded Password
CVSS 9.8
CVE-2024-46328 HIGH
VONETS VAP11G-300 <3.3.23.6.9 - Privilege Escalation
CVSS 8.0
CVE-2024-43423 CRITICAL
ProGauge MAGLINK LX4 CONSOLE - Info Disclosure
CVSS 9.8
CVE-2024-46959 MEDIUM
runofast Indoor Security Camera - Info Disclosure
CVSS 6.5
CVE-2024-8580 HIGH
TOTOLINK AC1200 T8 4.1.5cu.861_B20230220 - Hard-Coded Password
CVSS 8.1
CVE-2024-39585 HIGH
Dell SmartFabric OS10 10.5.5.4-10.5.5.10 and 10.5.6.x - Use of Hard-coded Password
CVSS 7.9
CVE-2024-42639 CRITICAL
H3C GR1100-P Firmware v100R009 - Use of Hard-coded Password in /etc/shadow
CVSS 9.8
CVE-2024-31798 MEDIUM
GNCC's GC2 Indoor Security Camera 1080P - Info Disclosure
CVSS 6.8
CVE-2024-41616 CRITICAL
D-Link DIR-300 REVA - Info Disclosure
CVSS 9.8
CVE-2024-38885 HIGH
Horizon Business Services Inc. Caterease <24.0.1.2405 - Privilege E...
CVSS 7.5
CVE-2024-7332 CRITICAL
TOTOLINK CP450 4.1.0cu.747_B20191224 - Hard-Coded Password
CVSS 9.8
CVE-2024-7216 LOW
TOTOLINK LR1200 9.3.1cu.2832 - Info Disclosure
CVSS 2.6
CVE-2024-7170 LOW
TOTOLINK A3000RU 5.9c.5185 - Use of Hard-Coded Password
CVSS 3.5
CVE-2024-7159 MEDIUM
TOTOLINK A3600R 4.1.2cu.5182_ - Hard-coded Password
CVSS 5.5
Details
Vulnerabilities 194
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits