Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-321

CWE-321

High likelihood

Use of Hard-coded Cryptographic Key

Parent: CWE-798 - Use of Hard-coded Credentials

The product uses a hard-coded, unchangeable cryptographic key.

297 vulnerabilities with CWE-321

CVE-2023-39982 HIGH

MXsecurity <1.0.1 - Info Disclosure

CVE-2023-3404 MEDIUM

ProfileGrid <5.5.0 - Info Disclosure

CVE-2023-32077 HIGH

Netmaker <0.17.1 and 0.18.6 - Info Disclosure

CVE-2023-3632 CRITICAL

Kunduz - Homework Helper App < 6.2.3 - Authentication Abuse and Bypass via Hard-coded Cryptographic Key

CVE-2023-3947 LOW

Video Conferencing with Zoom plugin <4.2.1 - Info Disclosure

CVE-2023-37291 HIGH

Galaxy Software Services Vitals ESP <6.2.0 - Code Injection

CVE-2023-34123 HIGH

SonicWall GMS <9.3.2-SP1 - Info Disclosure

CVE-2023-22844 HIGH

Milesight VPN 2.0.2 - Authentication Bypass via Hard-coded Cryptographic Key

CVE-2023-34338 HIGH

AMI MegaRAC SP-X - Use of Hard-coded Cryptographic Key in BMC Certificate

CVE-2023-3371 MEDIUM

EmbedPress < 3.7.3 - Sensitive Information Exposure via Hardcoded Encryption Key

CVE-2023-2637 HIGH

Rockwell Automation's FactoryTalk System Services - Privilege Escal...

CVE-2023-21404 MEDIUM

AXIS OS 11.0.89-11.3.x - Use of Hard-coded Cryptographic Key in Legacy LUA Components

CVE-2023-2158 CRITICAL

Code Dx <2023.4.2 - User Impersonation

CVE-2023-0391 HIGH

MGT-COMMERCE CloudPanel <2.2.1 - Info Disclosure

CVE-2023-27583 CRITICAL

PanIndex <3.1.3 - Privilege Escalation

CVE-2023-20016 MEDIUM

Cisco UCS Central <4.2(3c) & FXOS <2.6.1 - Unauthenticated Sensitive Info Disclosure via Hard-coded Key

CVE-2023-21705 HIGH

Microsoft SQL Server - Remote Code Execution via Hard-coded Cryptographic Key

CVE-2023-20038 HIGH

Cisco Industrial Network Director - Info Disclosure

CVE-2022-48625 HIGH

Yealink Config Encrypt Tool <1.2 - Info Disclosure

CVE-2022-34386 MEDIUM

Dell SupportAssist <3.11.4-3.2.0 - Info Disclosure

CVE-2022-34462 HIGH

Dell EMC SCG Policy Manager <5.13 - Privilege Escalation

CVE-2022-34442 HIGH

Dell EMC SCG Policy Manager <5.13 - Code Injection

CVE-2022-34441 HIGH

Dell EMC SCG Policy Manager <5.13 - Info Disclosure

CVE-2022-34440 HIGH

Dell EMC SCG Policy Manager <5.13 - Info Disclosure

CVE-2022-36925 MEDIUM

Zoom Rooms < 5.11.4 - Local Privilege Escalation via Hard-coded Cryptographic Key

Previous Page 9 of 12 Next

Details

Vulnerabilities 297

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy