CWE-259

High likelihood

Use of Hard-coded Password

Parent: CWE-798 - Use of Hard-coded Credentials

The product contains a hard-coded password, which it uses for its own inbound authentication or for outbound communication to external components.

186 vulnerabilities with CWE-259
CVE-2024-27164 HIGH
Toshiba Printers - Info Disclosure
CVSS 7.1
CVE-2024-28023 MEDIUM
Message Queueing Mechanism - Info Disclosure
CVSS 5.7
CVE-2024-3700 CRITICAL
Estomed Sp. z o.o. Simple Care - Info Disclosure
CVSS 9.8
CVE-2024-3699 CRITICAL
drEryk Gabinet <9.17.0.0 - Info Disclosure
CVSS 9.8
CVE-2024-1228 CRITICAL
Eurosoft Przychodnia <20240417.001 - Info Disclosure
CVSS 9.8
CVE-2024-2420 CRITICAL
LenelS2 NetBox <5.6.1 - Auth Bypass
CVSS 9.8
CVE-2024-35395 HIGH
TOTOLINK CP900L <4.1.5cu.798_B20221228 - Info Disclosure
CVSS 8.8
CVE-2024-2038 HIGH
Atarim WordPress Plugin <3.22.6 - Auth Bypass
CVSS 7.5
CVE-2024-34025 CRITICAL
CyberPower PowerPanel - Auth Bypass
CVSS 9.8
CVE-2024-33625 CRITICAL
CyberPower PowerPanel - Auth Bypass
CVSS 9.8
CVE-2024-33867 MEDIUM
Linqi <1.4.0.1 - Info Disclosure
CVSS 4.8
CVE-2024-32741 CRITICAL
SIMATIC CN 4100 < V3.0 - Privilege Escalation
CVSS 10.0
CVE-2024-34211 HIGH
TOTOLINK CP450 <4.1.0cu.747_B20191224 - Info Disclosure
CVSS 8.8
CVE-2024-31810 CRITICAL
TOTOLINK EX200 V4.0.3c.7646 - Info Disclosure
CVSS 9.8
CVE-2024-29011 HIGH
GMS <9.3.4 - Auth Bypass
CVSS 7.5
CVE-2024-32210 MEDIUM
LoMag WareHouse Mgmt <1.0.20.120 - Info Disclosure
CVSS 5.3
CVE-2024-21990 MEDIUM
ONTAP Select Deploy <9.14.1.x - Info Disclosure
CVSS 5.4
CVE-2024-28066 HIGH
Unify CP IP Phone <1.10.4.3 - Info Disclosure
CVSS 8.8
CVE-2024-27488 CRITICAL
ZLMediaKit <8.0 - Privilege Escalation
CVSS 9.8
CVE-2024-28010 CRITICAL
NEC Corporation Various Products - Use After Free
CVSS 9.8
CVE-2024-26196 MEDIUM
Microsoft Edge < 122.0.2365.63 - Information Disclosure
CVSS 4.3
CVE-2024-2197 MEDIUM
Chirp Access - Info Disclosure
CVSS 4.3
CVE-2024-27774 HIGH
Unitronics Unistream Unilogic - Info Disclosure
CVSS 7.5
CVE-2023-37231 CRITICAL
Loftware Spectrum <4.6 HF14 - Code Injection
CVSS 9.8
CVE-2023-46685 CRITICAL
LevelOne WBR-6013 - Command Injection
CVSS 9.8
Details
Vulnerabilities 186
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits