Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-798

CWE-798

High likelihood

Use of Hard-coded Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

1,712 vulnerabilities with CWE-798

CVE-2024-8162 CRITICAL

TOTOLINK T10 AC1200 4.1.8cu.5207 - Hard-coded Credentials

CVE-2024-8135 MEDIUM

gotribe < 2024-08-23 - Use of Hard-coded Credentials in Sign Function

CVE-2024-45165 MEDIUM

UCI IDOL 2 < 2.12 - Use of Hard-coded Credentials for Message Encryption

CVE-2024-28987 CRITICAL KEV

SolarWinds Web Help Desk - Hardcoded Credential

CVE-2024-8005 HIGH

demozx gf_cms <1.0.2 - Hard-coded Credentials

CVE-2024-42638 CRITICAL

H3C Magic B1ST v100R012 - Info Disclosure

CVE-2024-42637 CRITICAL

H3C R3010 v100R002L02 - Use of Hard-coded Credentials in /etc/shadow

CVE-2024-31798 MEDIUM

GNCC's GC2 Indoor Security Camera 1080P - Info Disclosure

CVE-2024-41161 HIGH

Vonets Industrial WiFi Bridge Firmware < 3.3.23.6.9 - Unauthenticated Authentication Bypass via Hard-coded Credentials

CVE-2024-6890 HIGH

Journyx - Unauthenticated Password Reset Token Brute-Force via Insecure Randomness

CVE-2024-41616 CRITICAL

D-Link DIR-300 REVA - Info Disclosure

CVE-2024-39838 HIGH

ZWX-2000CSW2-HN Firmware < 0.3.15 - Use of Hard-coded Credentials

CVE-2024-33895 MEDIUM

Ewon Cosy+ Firmware 21.x < 21.2s10 and 22.x < 22.1s3 - Use of Hard-coded Credentials

CVE-2024-7332 CRITICAL

TOTOLINK CP450 4.1.0cu.747_B20191224 - Hard-Coded Password

CVE-2024-41611 CRITICAL

D-Link DIR-860L REVA FIRMWARE PATCH 1.10..B04 - Use of Hard-coded Credentials in Telnet Service

CVE-2024-41610 CRITICAL

D-Link DIR-820LW REVB Firmware 2.03.B01_TC - Use of Hard-coded Credentials in Telnet Service

CVE-2024-7170 LOW

TOTOLINK A3000RU 5.9c.5185 - Use of Hard-Coded Password

CVE-2024-7155 LOW

TOTOLINK A3300R 17.0.0cu.557_B20221024 - Info Disclosure

CVE-2024-41689 MEDIUM

SyroTech SY-GPON-1110-WDONT Router - Cleartext Storage of WPA/WPS Credentials

CVE-2024-6912 CRITICAL

PerkinElmer ProcessPlus <= 1.11.6507.0 - Use of Hard-coded MSSQL Credentials

CVE-2024-5471 HIGH

ManageEngine DDI Central < 4002 - Agent Takeover via Hard-coded Credentials

CVE-2024-35338 CRITICAL

Tendacn I29 Firmware - Hard-coded Credentials

CVE-2024-5810 MEDIUM

WP2Speed Faster - Unauthorized Access

CVE-2024-28751 CRITICAL

Product <Version> - Privilege Escalation

CVE-2024-28747 CRITICAL

ifm Smart PLC AC14xx and AC4xxS Firmware < V4.3.17 - Unauthenticated Use of Hard-coded Credentials

Previous Page 17 of 69 Next

Details

Vulnerabilities 1,712

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy