CWE-798

High likelihood

Use of Hard-coded Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

1,719 vulnerabilities with CWE-798
CVE-2021-33529 HIGH
Weidmueller Industrial WLAN - Info Disclosure
CVSS 7.5
CVE-2021-34812 MEDIUM
Synology Calendar < 2.4.0-0761 - Use of Hard-coded Credentials in PHP Component
CVSS 5.8
CVE-2021-31477 HIGH
GE Reason RPV311 Firmware 14A03 - Unauthenticated Remote Code Execution via Hard-coded Credentials
CVSS 7.3
CVE-2021-27481 MEDIUM
ZOLL Defibrillator Dashboard <2.2 - Info Disclosure
CVSS 5.5
CVE-2021-3565 MEDIUM
tpm2-tools <5.1.1-4.3.2 - Info Disclosure
CVSS 5.9
CVE-2021-32459 MEDIUM
Trend Micro Home Network Security < 6.6.604 - Use of Hard-coded Credentials in Log Collection Server
CVSS 6.5
CVE-2021-20426 CRITICAL
IBM Security Guardium 11.2 - Info Disclosure
CVSS 9.8
CVE-2021-29691 HIGH
IBM Security Identity Manager 7.0.2 - Use of Hard-coded Credentials
CVSS 7.5
CVE-2021-28111 HIGH
Draeger X-Dock Firmware <03.00.13 - RCE
CVSS 8.8
CVE-2021-32454 CRITICAL
SITEL CAP/PRX Firmware 5.2.01 - Use of Hard-coded Credentials
CVSS 9.6
CVE-2021-20025 HIGH
SonicWall Email Security Virtual Appliance < 10.0.9 - Use of Hard-coded Credentials
CVSS 7.8
CVE-2021-27437 CRITICAL
Advantech WISE-PaaS/RMM < 9.0.1 - Unauthenticated Hard-coded Credentials Exposure
CVSS 9.1
CVE-2021-20401 HIGH
IBM QRadar SIEM <7.4 - Info Disclosure
CVSS 7.8
CVE-2021-30165 HIGH
Edimax Wireless Network Camera - Info Disclosure
CVSS 7.5
CVE-2021-25898 HIGH
Void Aural Rec Monitor 9.0.0.1 - Cleartext Storage of Sensitive Information in svc-login.php
CVSS 7.5
CVE-2021-27392 HIGH
Siveillance Video Open Network Bridge <2020 - Auth Bypass
CVSS 8.8
CVE-2021-0266 HIGH
Juniper Networks Junos OS <20.2R3, <20.3R2, <20.4R2 - Code Injection
CVSS 8.1
CVE-2021-0248 CRITICAL
Juniper Networks Junos OS <19.1R1 - Privilege Escalation
CVSS 10.0
CVE-2021-0245 HIGH
Juniper Networks Junos OS - Privilege Escalation
CVSS 7.8
CVE-2021-26579 MEDIUM
HPE Unified Data Management - Use of Hard-coded Cryptographic Key
CVSS 5.5
CVE-2021-27452 HIGH
GE MU320E Firmware < 04a00.1 - Use of Hard-coded Password
CVSS 7.8
CVE-2021-27440 CRITICAL
Reason DR60 <02A04.1 - Info Disclosure
CVSS 9.8
CVE-2021-27438 HIGH
Reason DR60 <02A04.1 - Info Disclosure
CVSS 8.8
CVE-2021-27254 HIGH
NETGEAR Multiple Routers and Extenders - Unauthenticated Remote Code Execution via Hard-coded Encryption Key
CVSS 8.8
CVE-2021-21979 HIGH
Bitnami Laravel Containers Hard-coded Credentials in APP_KEY
CVSS 7.3
Details
Vulnerabilities 1,719
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits