Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-798

CWE-798

High likelihood

Use of Hard-coded Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

1,713 vulnerabilities with CWE-798

CVE-2023-40146 MEDIUM

Peplink Smart Reader Firmware 1.2.0 - Privilege Escalation via /bin/login Hard-coded Credentials

CVE-2023-38535 MEDIUM

OpenText Exceed Turbo X <12.5.2 - Code Injection

CVE-2023-5456 HIGH

AiLux imx6 < 1.0.7-2 - Unauthenticated MariaDB Access via Hard-coded Credentials

CVE-2023-6255 HIGH

Utarit SoliPay <5.0.8 - Info Disclosure

CVE-2023-4539 HIGH

Comarch ERP XL <2023.2 - Info Disclosure

CVE-2023-6409 HIGH

EcoStruxure Control Expert - Info Disclosure

CVE-2023-38995 CRITICAL

SCHUHFRIED v.8.22.00 - Info Disclosure

CVE-2023-46706 CRITICAL

MachineSense Devices - Info Disclosure

CVE-2023-51840 CRITICAL

DoraCMS 2.1.8 - Use of Hard-coded Cryptographic Key

CVE-2023-6482 MEDIUM

Synaptics Fingerprint Driver - Info Disclosure

CVE-2023-46943 CRITICAL

NPM @evershop/evershop <1.0.0-rc.8 - Info Disclosure

CVE-2023-28897 MEDIUM

Škoda Superb III 2022 - Info Disclosure

CVE-2023-49256 HIGH

Product <Version> - Info Disclosure

CVE-2023-49253 CRITICAL

Root User Password Hardcoded - Info Disclosure

CVE-2023-50124 MEDIUM

Flient Smart Door Lock v1.0 - Use of Hard-coded Credentials in Debug Interface

CVE-2023-48251 HIGH

Bosch NEXO-OS 1000-1500 < 1500-sp2 - Unauthenticated Remote Root Authentication via Hard-coded SSH Credentials

CVE-2023-48250 HIGH

Bosch NEXO-OS < 1500-sp2 - Unauthenticated Use of Hard-coded Credentials

CVE-2023-50974 MEDIUM

Appwrite CLI < 3.0.0 - Unprotected Credential Exposure via Prefs.json File

CVE-2023-50948 MEDIUM

IBM Storage Fusion HCI <2.7 - Info Disclosure

CVE-2023-37608 HIGH

Automatic Systems SOC FL9600 FirstLane V06 lego_T04E00 - Use of Hard-coded Credentials

CVE-2023-49228 MEDIUM

Peplink Balance Two <8.4.0 - Command Injection

CVE-2023-46918 MEDIUM

Phlox com.phlox.simpleserver.plus 1.8.1-plus - Info Disclosure

CVE-2023-46919 MEDIUM

Phlox Simple HTTP Server 1.8 - Info Disclosure

CVE-2023-46711 MEDIUM

Buffalo VR-S1000 Firmware < 2.37 - Use of Hard-coded Cryptographic Key

CVE-2023-40236 MEDIUM

Pexip Virtual Meeting Rooms < 3.0 - Authentication Bypass via Hard-coded SSH Host Key

Previous Page 22 of 69 Next

Details

Vulnerabilities 1,713

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy