The product contains hard-coded credentials, such as a password or cryptographic key.
1,718 vulnerabilities with CWE-798
CVE-2023-1748
CRITICAL
Nexx Smart Home - Info Disclosure
CVSS 9.3
CVE-2023-28503
CRITICAL
Rocket Software UniData <8.2.4-11.3.5-12.2.1 - Auth Bypass
CVSS 9.8
CVE-2023-28654
CRITICAL
Osprey Pump Controller 1.01 - Auth Bypass
CVSS 9.8
CVE-2023-0391
HIGH
MGT-COMMERCE CloudPanel <2.2.1 - Info Disclosure
CVSS 8.1
CVE-2023-26511
CRITICAL
Propius MachineSelector <6.6.1 - Auth Bypass
CVSS 9.8
CVE-2023-27583
CRITICAL
PanIndex <3.1.3 - Privilege Escalation
CVSS 9.8
CVE-2023-1269
CRITICAL
easyappointments < 1.5.0 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2023-22344
CRITICAL
SS1 <=13.0.0.40 - Hardcoded Debug Tool Credentials to SYSTEM Code Execution
CVSS 9.8
CVE-2023-25823
MEDIUM
Gradio < 3.13.1 - Use of Hard-coded Credentials via Share Link SSH Key Exposure
CVSS 5.4
CVE-2023-26462
HIGH
ThingsBoard 3.4.1 - Privilege Escalation
CVSS 8.1
CVE-2023-0808
LOW
Deye/Revolt/Bosswerk Inverter MW3_15U_5406_1.47/MW3_15U_5406_1.47 -...
CVSS 3.9
CVE-2023-21426
MEDIUM
Samsung Android - Use of Hard-coded Credentials in NFC Card Emulation PIN Encryption
CVSS 4.3
CVE-2023-24155
CRITICAL
TOTOLINK T8 V4.1.5cu - Info Disclosure
CVSS 9.8
CVE-2023-24149
CRITICAL
TOTOLINK CA300-PoE V6.2c.884 - Info Disclosure
CVSS 9.8
CVE-2023-24147
HIGH
TOTOLINK CA300-PoE V6.2c.884 - Info Disclosure
CVSS 7.5
CVE-2023-23132
HIGH
Selfwealth iOS App 3.3.1 - Hardcoded API Key Disclosure
CVSS 7.5
CVE-2023-24022
CRITICAL
Baicells Nova - Hardcoded Credentials
CVSS 10.0
CVE-2023-20038
HIGH
Cisco Industrial Network Director - Info Disclosure
CVSS 8.8
CVE-2023-22495
CRITICAL
maif izanami < 1.11.0 - Authentication Bypass via Hardcoded JWT Secret
CVSS 9.8
CVE-2023-21524
HIGH
Windows LSA - Elevation of Privilege via Hard-coded Credentials
CVSS 7.8
CVE-2023-22463
CRITICAL
KubePi < 1.6.3 - Use of Hard-coded Credentials in JWT Authentication
CVSS 9.8
CVE-2022-50696
CRITICAL
SOUND4 IMPACT/FIRST/PULSE/Eco <2 - Info Disclosure
CVSS 9.8
CVE-2022-27600
MEDIUM
QNAP QTS 4.5.1-4.5.4.2280 and QTS 5.0.1-5.0.1.2277 - Denial of Service via Uncontrolled Resource Consumption
CVSS 6.8
CVE-2022-22466
MEDIUM
IBM Security Verify Governance 10.0 - Info Disclosure
CVSS 6.8
CVE-2022-47891
HIGH
Riello UPS NetMan 204 Firmware - Unauthenticated Administrator Password Reset via Recovery Function
CVSS 8.1
Details
Vulnerabilities
1,718
Exploit Likelihood
High