Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-321

CWE-321

High likelihood

Use of Hard-coded Cryptographic Key

Parent: CWE-798 - Use of Hard-coded Credentials

The product uses a hard-coded, unchangeable cryptographic key.

297 vulnerabilities with CWE-321

CVE-2024-5296 CRITICAL

D-Link D-View 8 - Unauthenticated Authentication Bypass via Hard-coded Cryptographic Key

CVE-2024-31410 HIGH

CyberPower PowerPanel - SSL/TLS Impersonation

CVE-2024-30207 CRITICAL

SIMATIC RTLS Locating Manager -<V3.0.1.1 - Info Disclosure

CVE-2024-3109 MEDIUM

Motorola Phones < 2024-03-01 - Arbitrary File Read via Hard-coded AES Key

CVE-2024-33891 HIGH

Delinea Secret Server <11.7.000001 - Auth Bypass

CVE-2024-30407 HIGH

Juniper Cloud Native Router <23.4 - Code Injection

CVE-2024-2413 CRITICAL

Intumit SmartRobot Firmware < 6.2.0-202303TW - Use of Hard-coded Cryptographic Key

CVE-2024-1920 MEDIUM

osuuu LightPicture <1.2.2 - Use After Free

CVE-2024-1631 CRITICAL

Ed25519KeyIdentity - Insecure Seed Generation

CVE-2024-1258 LOW

Juanpao JPShop <=1.5.02 - Hard-coded Cryptographic Key

CVE-2023-37936 CRITICAL

Fortinet FortiSwitch <7.4.0 - Code Injection

CVE-2023-27584 CRITICAL

Dragonfly < 2.0.9 and v2 >=2.1.0-alpha.0 <2.1.0-beta.1 - Authentication Bypass via Hard-coded JWT Secret Key

CVE-2023-39482 MEDIUM

Softing Secure Integration Server < 1.30 - Authenticated Information Disclosure via Hardcoded Cryptographic Key

CVE-2023-39465 HIGH

Triangle MicroWorks SCADA Data Gateway - Sensitive Information Disclosure via Hard-coded Key

CVE-2023-32169 CRITICAL

D-Link D-View 8 < 2.0.1.27 - Unauthenticated Authentication Bypass via Hard-coded Cryptographic Key

CVE-2023-38535 MEDIUM

OpenText Exceed Turbo X <12.5.2 - Code Injection

CVE-2023-6482 MEDIUM

Synaptics Fingerprint Driver - Info Disclosure

CVE-2023-49256 HIGH

Product <Version> - Info Disclosure

CVE-2023-48392 CRITICAL

Kaifa WebITR Attendance System - Unauthenticated Account Access via Hard-coded Cryptographic Key

CVE-2023-40464 HIGH

Sierra Wireless ALEOS < 4.16.0 - Use of Hard-coded Cryptographic Key

CVE-2023-44318 MEDIUM

Siemens 6GK5205/6GK5208/6GK5213 Firmware < 4.5 - Authenticated Info Exposure via Hardcoded Key

CVE-2023-41137 HIGH

AppsAnywhere Client - Use of Hard-coded Cryptographic Key

CVE-2023-46129 HIGH

NATS Server 2.10.0-2.10.3 - Use of Hard-coded Cryptographic Key in nkeys Encryption

CVE-2023-42492 HIGH

EisBaer Scada < 3.0.6433.19643 - Use of Hard-coded Cryptographic Key

CVE-2023-43637 HIGH

lfedge/eve < 7.10 - Use of Hard-coded Cryptographic Key in Vault Key Derivation

Previous Page 8 of 12 Next

Details

Vulnerabilities 297

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy