CWE-259

High likelihood

Use of Hard-coded Password

Parent: CWE-798 - Use of Hard-coded Credentials

The product contains a hard-coded password, which it uses for its own inbound authentication or for outbound communication to external components.

186 vulnerabilities with CWE-259
CVE-2021-34601 CRITICAL
Bender/ebee <5.20.1 - Auth Bypass
CVSS 9.8
CVE-2021-36312 CRITICAL
Dell EMC CloudLink <7.1 - Info Disclosure
CVSS 9.1
CVE-2021-38456 CRITICAL
Moxa MXview <3.2.2 - Info Disclosure
CVSS 9.8
CVE-2021-28813 CRITICAL
QSW-M2116P-2T2S, QNAP switches - Info Disclosure
CVSS 9.6
CVE-2021-22729 CRITICAL
EVlink City/EVlink Parking/EVlink Smart Wallbox <R8 V3.4.0.1 - Priv...
CVSS 9.8
CVE-2021-21818 HIGH
Dlink Dir-3040 Firmware - Denial of Service
CVSS 7.5
CVE-2021-32525 CRITICAL
QSAN Storage Manager <3.3.3 - RCE
CVSS 9.1
CVE-2021-32521 HIGH
QSAN Storage Manager, XEVO, SANOS - Privilege Escalation
CVSS 7.3
CVE-2021-27452 HIGH
MU320E <v04A00.1 - Code Injection
CVSS 7.8
CVE-2021-27440 CRITICAL
Reason DR60 <02A04.1 - Info Disclosure
CVSS 9.8
CVE-2021-27254 HIGH
NETGEAR R7800 - Auth Bypass
CVSS 8.8
CVE-2020-5351 HIGH
Dell EMC Data Protection Advisor <6.4,6.5,18.1 - Info Disclosure
CVSS 7.5
CVE-2020-2499 MEDIUM
Qnap Qes < 2.1.1 - Insufficiently Protected Credentials
CVSS 6.3
CVE-2020-7590 MEDIUM
DCA Vantage Analyzer <4.5 - Info Disclosure
CVSS 6.8
CVE-2020-12047 CRITICAL
Baxter Spectrum WBM - Info Disclosure
CVSS 9.8
CVE-2020-12045 CRITICAL
Baxter Spectrum WBM - Info Disclosure
CVSS 9.8
CVE-2020-12039 LOW
Baxter Sigma Spectrum - Info Disclosure
CVSS 2.4
CVE-2020-12037 HIGH
Baxter Prismaflex Firmware < 3.0 - Cleartext Transmission
CVSS 7.5
CVE-2020-12016 CRITICAL
Baxter ExactaMix - Privilege Escalation
CVSS 9.8
CVE-2020-12012 MEDIUM
Baxter ExactaMix - Info Disclosure
CVSS 6.1
CVE-2019-10881 CRITICAL
Xerox AltaLink - Info Disclosure
CVSS 9.8
CVE-2019-13530 HIGH
Philips IntelliVue - RCE
CVSS 7.2
CVE-2019-3908 HIGH
Premisys Identicard <3.1.190 - Info Disclosure
CVSS 7.5
CVE-2018-25069 HIGH
Netis Netcore Router - Hard-Coded Password
CVSS 7.3
CVE-2018-8870 MEDIUM
Medtronic 24950-24952 - Privilege Escalation
CVSS 6.4
Details
Vulnerabilities 186
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits