CWE-798

High likelihood

Use of Hard-coded Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

1,719 vulnerabilities with CWE-798
CVE-2021-27149 CRITICAL
FiberHome HG6245D Firmware < RP2613 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2021-27148 CRITICAL
FiberHome HG6245D Firmware < RP2613 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2021-27147 CRITICAL
FiberHome HG6245D Firmware < rp2613 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2021-27146 CRITICAL
FiberHome HG6245D Firmware < rp2613 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2021-27145 CRITICAL
FiberHome HG6245D Firmware < rp2613 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2021-27144 CRITICAL
FiberHome HG6245D Firmware < RP2613 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2021-27143 CRITICAL
FiberHome HG6245D Firmware < rp2613 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2021-27142 HIGH
FiberHome HG6245D Firmware < RP2613 - Hardcoded Private Key Exposure
CVSS 7.5
CVE-2021-27141 CRITICAL
FiberHome HG6245D Firmware < RP2613 - Use of Hard-coded Credentials in /fhconf/umconfig.txt
CVSS 9.8
CVE-2021-25275 HIGH
SolarWinds Orion Platform <2020.2.4 - Info Disclosure
CVSS 7.8
CVE-2021-1219 HIGH
Cisco Smart Software Manager Satellite - Info Disclosure
CVSS 7.8
CVE-2020-37220 HIGH
Huawei HG630 V2 Router Authentication Bypass via Serial Number
CVSS 7.5
CVE-2020-37135 HIGH
AMSS++ 4.7 - Authentication Bypass via Hardcoded Credentials
CVSS 7.5
CVE-2020-37092 HIGH
Netis E1+ <1.2.32533 - Privilege Escalation
CVSS 7.5
CVE-2020-36911 CRITICAL
Covenant 0.1.3-0.5 - Remote Code Execution via JWT Token Forgery
CVSS 9.8
CVE-2020-36915 HIGH
Adtec Digital SignEdje <2.08.28 - Unauthenticated RCE
CVSS 7.5
CVE-2020-15327 HIGH
Zyxel CloudCNM SecuManager <3.1.1 - Info Disclosure
CVSS 7.5
CVE-2020-15326 MEDIUM
Zyxel CloudCNM SecuManager <3.1.1 - Info Disclosure
CVSS 5.3
CVE-2020-4157 HIGH
IBM QRadar Network Security 5.4.0 and 5.5.0 - Use of Hard-coded Credentials
CVSS 7.5
CVE-2020-4150 CRITICAL
IBM SiteProtector Appliance 3.1.1 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2020-36547 MEDIUM
GE Voluson S8 Firmware - Use of Hard-coded Credentials in Service Browser
CVSS 5.9
CVE-2020-25168 LOW
B. Braun Data module compactplus A10 and A11 - Use of Hard-coded Credentials
CVSS 3.3
CVE-2020-25193 MEDIUM
GE Reason RT430-RT434 - Info Disclosure
CVSS 5.3
CVE-2020-25180 MEDIUM
Schneider-electric Easergy T300 Firmware - Information Disclosure
CVSS 5.3
CVE-2020-36062 CRITICAL
Dairy Farm Shop Management System 1.0 - Use of Hard-coded Credentials
CVSS 9.8
Details
Vulnerabilities 1,719
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits