CWE-259

High likelihood

Use of Hard-coded Password

Parent: CWE-798 - Use of Hard-coded Credentials

The product contains a hard-coded password, which it uses for its own inbound authentication or for outbound communication to external components.

194 vulnerabilities with CWE-259
CVE-2022-26388 MEDIUM
Welch Allyn ELI 380 Resting Electrocardiograph < 2.6.0 - Use of Hard-coded Password
CVSS 6.4
CVE-2022-45444 CRITICAL
Sewio's RTLS Studio <2.6.2 - Info Disclosure
CVSS 10.0
CVE-2022-41653 CRITICAL
Daikin SVMPC1 <2.1.22 - Info Disclosure
CVSS 9.8
CVE-2022-29831 HIGH
Mitsubishi Electric Corporation GX Works3 <1.095Z - Info Disclosure
CVSS 7.5
CVE-2022-29825 MEDIUM
Mitsubishi Electric GX Works3 <1.090U - Info Disclosure
CVSS 5.6
CVE-2022-22144 CRITICAL
TCL LinkHub Mesh Wi-Fi MS1G_00_01.00_14 - Info Disclosure
CVSS 9.8
CVE-2022-30271 CRITICAL
Motorola ACE1000 RTU - Info Disclosure
CVSS 9.8
CVE-2022-27172 HIGH
InHand Networks InRouter302 V3.5.37 - Code Injection
CVSS 8.8
CVE-2021-34601 CRITICAL
Bender CC612 Firmware <= 5.20.1 - Hardcoded SSH Credentials
CVSS 9.8
CVE-2021-36312 CRITICAL
Dell EMC CloudLink <7.1 - Info Disclosure
CVSS 9.1
CVE-2021-38456 CRITICAL
Moxa MXview <3.2.2 - Info Disclosure
CVSS 9.8
CVE-2021-28813 CRITICAL
QSW-M2116P-2T2S, QNAP switches - Info Disclosure
CVSS 9.6
CVE-2021-22729 CRITICAL
EVlink City/EVlink Parking/EVlink Smart Wallbox <R8 V3.4.0.1 - Priv...
CVSS 9.8
CVE-2021-21818 HIGH
D-LINK DIR-3040 1.13B03 - Denial of Service via Zebra IP Routing Manager
CVSS 7.5
CVE-2021-32525 CRITICAL
QSAN Storage Manager < 3.3.1 - Use of Hard-coded Password
CVSS 9.1
CVE-2021-32521 HIGH
QSAN Storage Manager, XEVO, SANOS - Privilege Escalation
CVSS 7.3
CVE-2021-27452 HIGH
GE MU320E Firmware < 04a00.1 - Use of Hard-coded Password
CVSS 7.8
CVE-2021-27440 CRITICAL
Reason DR60 <02A04.1 - Info Disclosure
CVSS 9.8
CVE-2021-27254 HIGH
NETGEAR Multiple Routers and Extenders - Unauthenticated Remote Code Execution via Hard-coded Encryption Key
CVSS 8.8
CVE-2020-5351 HIGH
Dell EMC Data Protection Advisor <6.4,6.5,18.1 - Info Disclosure
CVSS 7.5
CVE-2020-2499 MEDIUM
QES < 2.1.1 - Unauthenticated Hard-Coded Password Bypass
CVSS 6.3
CVE-2020-7590 MEDIUM
DCA Vantage Analyzer <4.5 - Info Disclosure
CVSS 6.8
CVE-2020-12047 CRITICAL
Baxter Spectrum WBM - Info Disclosure
CVSS 9.8
CVE-2020-12045 CRITICAL
Baxter Spectrum WBM - Info Disclosure
CVSS 9.8
CVE-2020-12039 LOW
Baxter Sigma Spectrum - Info Disclosure
CVSS 2.4
Details
Vulnerabilities 194
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits