Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-798

CWE-798

High likelihood

Use of Hard-coded Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

1,718 vulnerabilities with CWE-798

CVE-2022-47558 CRITICAL

Ormazabal ekorRCI and ekorCCP Firmware - Unauthenticated FTP Access via Default Credentials

CVE-2022-3744 MEDIUM

Lenovo IdeaPad LCFC BIOS - Unauthenticated UEFI Variable Unlock via Hard-coded SMI Handler Credential

CVE-2022-44612 MEDIUM

Intel Unison < 10.12 - Authenticated Information Disclosure via Hard-coded Credentials

CVE-2022-47617 HIGH

Hitron CODA-5310 Firmware - Authenticated Use of Hard-coded Credentials

CVE-2022-4333 CRITICAL

Sprecher Automation SPRECON-E Firmware - Use of Hard-coded Credentials

CVE-2022-41400 CRITICAL

Sage 300 < 2022 - Use of Hard-coded Credentials for Password Encryption

CVE-2022-41399 HIGH

Sage 300 < 2022 - Use of Hard-coded Credentials in Web Screens Database Configuration

CVE-2022-41398 HIGH

Sage 300 < 2022 - Use of Hard-coded Credentials in Global Search Solr Instance

CVE-2022-41397 CRITICAL

Sage 300 < 2022 - Use of Hard-coded Credentials in Web Screens and Global Search

CVE-2022-39989 CRITICAL

Fighting Cock Information System 1.0 - Use of Hard-coded Credentials

CVE-2022-45291 HIGH

PWS Personal Weather Station Dashboard 2012_lts - Remote Code Execution via settings.php Injection

CVE-2022-37255 HIGH

TP-Link Tapo C310 1.3.0 - Unauthenticated Video Feed Access via Hard-coded RTSP Credentials

CVE-2022-22512 CRITICAL

VARTA Storage Firmware - Unauthenticated Administrative Access via Hard-coded Credentials

CVE-2022-46637 CRITICAL

Prolink router PRS1841 - Info Disclosure

CVE-2022-3089 MEDIUM

Echelon SmartServer 2.2 - Info Disclosure

CVE-2022-34449 MEDIUM

Dell PowerPath Management Appliance 3.2-3.3 - Authenticated Hardcoded Cryptographic Keys

CVE-2022-34386 MEDIUM

Dell SupportAssist <3.11.4-3.2.0 - Info Disclosure

CVE-2022-45766 CRITICAL

Global Facilities Management Software Version 3 - Hardcoded Credentials

CVE-2022-48113 CRITICAL

TOTOLINK N200RE_v5 Firmware V9.3.5u.6139 - Unauthenticated Telnet Access via Hardcoded Credentials

CVE-2022-42973 HIGH

Schneider Electric APC Easy UPS Online Monitoring Software < 2.5-GA-01-22320 - Local Privilege Escalation

CVE-2022-43978 MEDIUM

Pandora FMS < 766 - Improper Authentication via Static Session Secret

CVE-2022-48067 MEDIUM

Totolink A830R V4.1.2cu.5182 - Use of Hard-coded Credentials

CVE-2022-34462 HIGH

Dell EMC SCG Policy Manager <5.13 - Privilege Escalation

CVE-2022-34442 HIGH

Dell EMC SCG Policy Manager <5.13 - Code Injection

CVE-2022-45444 CRITICAL

Sewio's RTLS Studio <2.6.2 - Info Disclosure

Previous Page 29 of 69 Next

Details

Vulnerabilities 1,718

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy