Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-798

CWE-798

High likelihood

Use of Hard-coded Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

1,713 vulnerabilities with CWE-798

CVE-2023-47704 MEDIUM

IBM Security Guardium Key Lifecycle Manager 4.2.0-4.2.0.2 - Use of Hard-coded Credentials

CVE-2023-43870 HIGH

Paxton Access Net2 - Use of Hard-coded Credentials in Root Certificate

CVE-2023-48392 CRITICAL

Kaifa WebITR Attendance System - Unauthenticated Account Access via Hard-coded Cryptographic Key

CVE-2023-48388 CRITICAL

Multisuns EasyLog web+ - Use of Hard-coded Credentials

CVE-2023-48374 MEDIUM

SmartStar Software CWS - Use of Hard-coded Credentials

CVE-2023-43583 MEDIUM

Zoom Meeting SDK < 5.16.0 - Use of Hard-coded Credentials

CVE-2023-36651 HIGH

ProLion CryptoSpike 3.0.15P2 - Auth Bypass

CVE-2023-36647 HIGH

ProLion CryptoSpike 3.0.15P2 - Auth Bypass

CVE-2023-40300 CRITICAL

NETSCOUT nGeniusPULSE 3.8 - Use of Hard-coded Cryptographic Key

CVE-2023-33413 HIGH

Supermicro X11/M11 <3.17.02 - Command Injection

CVE-2023-39169 CRITICAL

SENEC Storage Box Firmware - Use of Hard-coded Credentials

CVE-2023-6448 CRITICAL KEV

Unitronics VisiLogic <9.9.00 - Info Disclosure

CVE-2023-40464 HIGH

Sierra Wireless ALEOS < 4.16.0 - Use of Hard-coded Cryptographic Key

CVE-2023-40463 HIGH

Sierra Wireless ALEOS < 4.16.0 - Hard-coded Root Password Hash Exposure

CVE-2023-28895 LOW

MIB3 Firmware < 0304 - Hard-coded Password for PWC Debugging Console

CVE-2023-23324 CRITICAL

Zumtobel Netlink CCD Firmware 3.74-3.80 - Use of Hard-coded Credentials

CVE-2023-29064 MEDIUM

FACSChorus - Use of Hard-coded Credentials

CVE-2023-47315 HIGH

Headwind MDM 5.22.1 - Incorrect Access Control via Hard-coded JWT Secret

CVE-2023-36013 MEDIUM

PowerShell 7.2-7.2.16 - Information Disclosure via Hard-coded Credentials

CVE-2023-48055 HIGH

SuperAGI v0.0.13 - Use of Hard-coded Credentials

CVE-2023-48053 HIGH

Archery 1.10.0 - Information Disclosure via Static AES-CBC Initialization Vector

CVE-2023-47213 CRITICAL

First Corporation DVRs - Unauthenticated Use of Hard-coded Credentials

CVE-2023-44296 HIGH

Dell ELab-Navigator 3.1.9 - Use of Hard-coded Credentials

CVE-2023-40719 MEDIUM

Fortinet FortiAnalyzer and FortiManager 7.0.0-7.0.8, 7.2.0-7.2.3, 7.4.0 - Use of Hard-coded Credentials

CVE-2023-33304 MEDIUM

Fortinet FortiClient <7.0.10, >7.2.1 - Info Disclosure

Previous Page 23 of 69 Next

Details

Vulnerabilities 1,713

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy