Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-798

CWE-798

High likelihood

Use of Hard-coded Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

1,719 vulnerabilities with CWE-798

CVE-2021-41320 MEDIUM

Wallstreet Suite TRM 7.4.83 - Use of Hard-coded Credentials

CVE-2021-38456 CRITICAL

Moxa MXview <3.2.2 - Info Disclosure

CVE-2021-34757 MEDIUM

Cisco Business 220 Series - Privilege Escalation

CVE-2021-34744 MEDIUM

Cisco Business 220 Series - Privilege Escalation

CVE-2021-33583 CRITICAL

REINER timeCard 6.05.07 - SQL Injection

CVE-2021-41299 CRITICAL

ECOA BAS Controller - Use of Hard-coded Credentials

CVE-2021-41828 HIGH

Zoho ManageEngine Remote Access Plus < 10.1.2121.1 - Use of Hard-coded Credentials in resetPWD.xml

CVE-2021-41827 HIGH

Zoho ManageEngine Remote Access Plus < 10.1.2121.1 - Hardcoded Credentials in DCBackupRestore JAR Archive

CVE-2021-21913 CRITICAL

D-LINK DIR-3040 1.13B03 - Use of Hard-coded Credentials

CVE-2021-34571 MEDIUM

Enbra EWM - Use of Hard-coded Credentials in Security Mode 5

CVE-2021-28813 CRITICAL

QSW-M2116P-2T2S, QNAP switches - Info Disclosure

CVE-2021-28912 HIGH

BAB TECHNOLOGIE eibPort V3 < 3.9.1 - Weak Hardcoded Root SSH Key Passphrase

CVE-2021-33484 HIGH

OnyakTech Comments Pro 3.8 - Info Disclosure

CVE-2021-40494 CRITICAL

AdaptiveScale LXDUI < 2.1.3 - Hardcoded JWT Secret Key in metadata.py

CVE-2021-36234 MEDIUM

MIK.starlight 7.9.5.24363 - Info Disclosure

CVE-2021-34565 CRITICAL

PEPPERL+FUCHS WirelessHART-Gateway 3.0.7-3.0.9 - Use of Hard-coded Credentials

CVE-2021-29728 MEDIUM

IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 - Use of Hard-coded Credentials

CVE-2021-39615 CRITICAL

D-Link DSR-500N 1.02 - Use of Hard-coded Credentials in /etc/passwd

CVE-2021-39614 CRITICAL

D-Link DVX-2000MS Firmware - Use of Hard-coded Credentials in /etc/passwd

CVE-2021-39613 CRITICAL

D-Link DVG-3104MS 1.0.2.0.3, 1.0.2.0.4, and 1.0.2.0.4E - Use of Hard-coded Credentials

CVE-2021-39245 HIGH

Altus Nexto, Nexto Xpress, and Hadron Xtorm - Hardcoded Credentials in .htaccess for getlogs.cgi

CVE-2021-32588 CRITICAL

FortiPortal <=6.0.4 Unauthenticated RCE via Tomcat Hard-coded Credentials

CVE-2021-27952 CRITICAL

ecobee3 lite 4.5.81.200 - Info Disclosure

CVE-2021-27503 MEDIUM

Ypsomed mylife <1.7.2-1.7.5 - Info Disclosure

CVE-2021-37163 CRITICAL

HMI3 Control Panel Firmware < 7.2.5.7 - Use of Hard-coded Credentials

Previous Page 39 of 69 Next

Details

Vulnerabilities 1,719

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy