CWE-798

High likelihood

Use of Hard-coded Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

1,721 vulnerabilities with CWE-798
CVE-2020-25231 MEDIUM
LOGO! 8 BM and LOGO! Soft Comfort <8.3 - Use of Hard-coded Cryptographic Key
CVSS 5.5
CVE-2020-25229 HIGH
Siemens LOGO! 8 BM Firmware <8.3 - Replay Attack via Static Encryption Key
CVSS 7.5
CVE-2020-35338 CRITICAL
Mobile Viewpoint Wireless Multiplex Terminal Playout Server < 20.2.8 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2020-29383 HIGH
V-SOL V1600D4L/V1600D-MINI <1.01.49 - Info Disclosure
CVSS 7.8
CVE-2020-29382 HIGH
V-SOL V1600D V2.03.69 and V2.03.57, V1600G1 V2.0.7 and V1.9.7, and V1600G2 V1.1.4 - Use of Hard-coded Credentials
CVSS 7.8
CVE-2020-29377 CRITICAL
V-SOL V1600D V2.03.69 - Auth Bypass
CVSS 9.8
CVE-2020-29376 CRITICAL
V-SOL V1600D/V1600D4L/V1600D-MINI/V1600G1/V1600G2 - Hard-coded TELNET Admin Credentials
CVSS 9.8
CVE-2020-29375 HIGH
V-SOL V1600D/V1600D4L/V1600D-MINI/V1600G1/V1600G2 - Authenticated Privilege Escalation via Hardcoded Password
CVSS 8.8
CVE-2020-29062 CRITICAL
CDATA OLT Firmware - Use of Hard-coded Credentials
CVSS 9.8
CVE-2020-29061 CRITICAL
CDATA OLT Firmware - Use of Hard-coded Credentials
CVSS 9.8
CVE-2020-29060 CRITICAL
Cdatatec 72408a Firmware - Hard-coded Credentials
CVSS 9.8
CVE-2020-29059 CRITICAL
CDATA OLT Firmware - Use of Hard-coded Credentials
CVSS 9.8
CVE-2020-28329 CRITICAL
Barco wePresent WiPG-1600W Firmware 2.5.1.8, 2.5.0.25, 2.5.0.24, 2.4.1.19 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2020-28334 CRITICAL
Barco wePresent WiPG-1600W Firmware - Use of Hard-coded Credentials
CVSS 9.8
CVE-2020-25688 LOW
rhacm <2.0.5-2.1.0 - Info Disclosure
CVSS 3.5
CVE-2020-4854 CRITICAL
IBM Spectrum Protect Plus 10.1.0-10.1.6 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2020-26097 CRITICAL
PLANET NVR-915 and NVR-1615 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2020-26509 HIGH
Airleader Master & Easy <= 6.21 - DoS
CVSS 7.5
CVE-2020-26892 CRITICAL
NATS nats-server <2.1.9 - Info Disclosure
CVSS 9.8
CVE-2020-5667 MEDIUM
Studyplus App <6.3.7-8.29.0 - Info Disclosure
CVSS 5.5
CVE-2020-27689 CRITICAL
Verve Connect VH510 Firmware < 1.0.1.6l0516 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2020-11615 HIGH
Intel BMC Firmware < 3.38.30 - Use of Hard-coded RC4 Cipher Key
CVSS 7.5
CVE-2020-11487 HIGH
Intel BMC Firmware < 3.38.30 - Use of Hard-coded Credentials
CVSS 7.5
CVE-2020-11483 CRITICAL
Intel BMC Firmware < 3.38.30 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2020-16258 HIGH
Winston 1.5.4 - Use of Hard-coded Credentials in Monit Service
CVSS 7.1
Details
Vulnerabilities 1,721
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits