Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-798

CWE-798

High likelihood

Use of Hard-coded Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

1,713 vulnerabilities with CWE-798

CVE-2024-27774 HIGH

Unitronics Unistream Unilogic - Info Disclosure

CVE-2024-28194 CRITICAL

your_spotify < 1.8.0 - Authentication Bypass via Hardcoded JWT Secret

CVE-2024-25731 HIGH

Elink Smart eSmartCam 2.1.5 - Use of Hard-coded AES Encryption Keys

CVE-2024-24681 CRITICAL

Yealink Configuration Encrypt Tool <1.2 - Info Disclosure

CVE-2024-1661 LOW

Totolink X6000R 9.4.0cu.852_B20230719 - Use of Hard-coded Credentials in /etc/shadow

CVE-2024-1344 MEDIUM

LaborOfficeFree 19.10 - Use of Hard-coded Credentials in Database Configuration

CVE-2024-0390 CRITICAL

inprax izzi_connect < 2024010401 - Use of Hard-coded MQTT Credentials

CVE-2024-23816 CRITICAL

Siemens Location Intelligence < 4.3 - Unauthenticated Administrative Access via Hard-coded Secret

CVE-2024-22313 MEDIUM

IBM Storage Defender - Resiliency Service 2.0 - Info Disclosure

CVE-2024-22853 CRITICAL

D-LINK Go-RT-AC750 - Code Injection

CVE-2024-21764 CRITICAL

Rapid SCADA < 5.8.4 - Use of Hard-coded Credentials

CVE-2024-1039 CRITICAL

Gessler GmbH WEB-MASTER Firmware - Improper Authentication via Hardcoded Credentials

CVE-2024-24324 CRITICAL

TOTOLINK A8000RU v7.1cu.643_B20200521 - Use of Hard-coded Credentials

CVE-2024-23619 CRITICAL

IBM Merge Healthcare eFilm Workstation < 4.2 - Unauthenticated Hardcoded Credential Use

CVE-2024-23453 MEDIUM

spooncast/spoon 7.11.1-8.6.0 - Hard-coded Credentials Exposure

CVE-2024-23842 HIGH

Hitron LGUVR-16H Firmware 1.02-4.02 - Unauthenticated Network Attack via Default Credentials

CVE-2024-22772 HIGH

Hitron Systems DVR LGUVR-8H <4.02 - Info Disclosure

CVE-2024-22771 HIGH

Hitron Systems DVR LGUVR-4H <4.02 - Info Disclosure

CVE-2024-22770 HIGH

Hitron Systems DVR HVR-16781 <4.02 - Info Disclosure

CVE-2024-22769 HIGH

Hitron Systems DVR HVR-8781 <4.02 - Info Disclosure

CVE-2024-22768 HIGH

Hitron Systems DVR HVR-4781 <4.02 - Info Disclosure

CVE-2024-23726 HIGH

Ubee DDW365 XCNDDW365 - Use of Hard-coded Credentials via Predictable WPA2 PSK

CVE-2024-23687 CRITICAL

FOLIO mod-data-export-spring <1.5.4 and 2.0.0-2.0.2 - Unauthenticated Use of Hard-coded Credentials

CVE-2024-23685 MEDIUM

mod-remote-storage <1.7.2 and 2.0.0-2.0.3 - Unauthenticated Unauthorized Data Access via Hard-coded Credentials

CVE-2023-27573 CRITICAL

netbox-docker < 2.5.0 - Use of Default Credentials

Previous Page 20 of 69 Next

Details

Vulnerabilities 1,713

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy