Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-798

CWE-798

High likelihood

Use of Hard-coded Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

1,718 vulnerabilities with CWE-798

CVE-2023-39808 CRITICAL

Nvki Intelligent Broadband Subscriber Gateway - Hard-coded Credentials

CVE-2023-4204 MEDIUM

NPort IAW5000A-I/O Series <v2.2 - Hardcoded Credential

CVE-2023-3264 MEDIUM

Cyberpower Powerpanel Server < 2.6.9 - Hard-coded Credentials

CVE-2023-3262 MEDIUM

Dataprobe iBoot PDU Firmware < 1.44.0804202 - Use of Hard-coded Credentials

CVE-2023-22957 HIGH

AudioCodes C470HD C455HD C435HD 445HD 405HD C450HD Firmware < 3.4.4.1000 - Use of Hard-coded Cryptographic Key

CVE-2023-22956 HIGH

AudioCodes VoIP Desk Phones < 3.4.4.1000 - Hard-coded Cryptographic Key

CVE-2023-37857 LOW

PHOENIX CONTACT WP 6xxx Series Firmware < 4.0.10 - Authenticated Hardcoded Cryptographic Key Exposure

CVE-2023-21652 HIGH

Qualcomm AQT1000 and AR8035 Firmware - Cryptographic Information Exposure via Stack Residue

CVE-2023-33372 CRITICAL

Connected IO < 2.1.0 - Use of Hard-coded Credentials in MQTT Communication

CVE-2023-33371 CRITICAL

Control ID IDSecure <4.7.26.0 - Auth Bypass

CVE-2023-37215 MEDIUM

JBL Bar 5.1 Surround Firmware < 23.23.51.00 - Use of Hard-coded Credentials

CVE-2023-32227 CRITICAL

Synel SYnergy Fingerprint Terminals < 3015.1 - Use of Hard-coded Credentials

CVE-2023-33744 CRITICAL

TeleAdapt RoomCast TA-2400 <3.1 - Info Disclosure

CVE-2023-38433 HIGH

Fujitsu Real-time Video Transmission Gear - RCE

CVE-2023-35763 MEDIUM

Iagona ScrutisWeb <= 2.1.37 - Unauthenticated Password Decryption via Hard-coded Credentials

CVE-2023-34123 HIGH

SonicWall GMS <9.3.2-SP1 - Info Disclosure

CVE-2023-37287 CRITICAL

SmartBPM.NET - Unauthenticated Use of Hard-coded Credentials

CVE-2023-37286 CRITICAL

SmartSoft SmartBPM.NET - Unauthenticated Remote Code Execution via Hard-coded Machine Key

CVE-2023-35987 CRITICAL

PiiGAB M-Bus 900s Firmware - Use of Hard-coded Credentials

CVE-2023-36623 HIGH

Loxone Miniserver Go Gen.2 <14.2 - Privilege Escalation

CVE-2023-34473 MEDIUM

AMI MegaRAC SP-X - Use of Hard-coded Credentials

CVE-2023-34338 HIGH

AMI MegaRAC SP-X - Use of Hard-coded Cryptographic Key in BMC Certificate

CVE-2023-36817 HIGH

tktchurch/website <0.1.0 - Info Disclosure

CVE-2023-28387 MEDIUM

NewsPicks < 10.4.2 (iOS) and < 10.4.5 (Android) - Use of Hard-coded Credentials

CVE-2023-2611 CRITICAL

Advantech R-SeeNet <2.4.22 - Privilege Escalation

Previous Page 26 of 69 Next

Details

Vulnerabilities 1,718

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy