The product contains hard-coded credentials, such as a password or cryptographic key.
1,663 vulnerabilities with CWE-798
CVE-2025-65730
HIGH
GoAway <0.62.18 - Auth Bypass
CVSS 8.8
CVE-2025-66237
MEDIUM
DCIM dcTrack - Privilege Escalation
CVSS 6.7
CVE-2025-29268
CRITICAL
Allnet All-rut22gw Firmware - Hard-coded Credentials
CVSS 9.8
CVE-2025-64778
HIGH
Mirion Biodose/nmis < 23.0 - Hard-coded Credentials
CVSS 7.3
CVE-2025-66454
MEDIUM
Arcade MCP <1.5.4 - Auth Bypass
CVSS 6.5
CVE-2025-54341
MEDIUM
Desktopalert Pingalert Application Server - Hard-coded Credentials
CVSS 5.3
CVE-2025-63433
MEDIUM
Xtooltech Xtool AnyScan <4.40.40 - Code Injection
CVSS 4.6
CVE-2025-59669
MEDIUM
Fortinet Fortiweb < 7.6.1 - Hard-coded Credentials
CVSS 5.3
CVE-2025-64766
MEDIUM
NixOS's Onlyoffice <25.05 - Info Disclosure
CVSS 5.3
CVE-2025-13252
HIGH
shsuishang ShopSuite ModulithShop <45a99398cec3b7ad7ff9383694f0b533...
CVSS 7.3
CVE-2025-33186
HIGH
NVIDIA AIStore - Privilege Escalation/Info Disclosure/Data Tampering
CVSS 8.8
CVE-2025-42890
CRITICAL
SQL Anywhere Monitor - RCE
CVSS 10.0
CVE-2025-34501
HIGH
Deck Mate 2 - Auth Bypass
CVE-2025-62777
HIGH
MZK-DP300N <1.07 - Code Injection
CVSS 8.8
CVE-2025-41109
MEDIUM
Ghostrobotics Vision 60 Firmware - Hard-coded Credentials
CVSS 4.6
CVE-2025-41722
HIGH
wsc server - Info Disclosure
CVSS 7.5
CVE-2025-10639
HIGH
WorkExaminer Professional - RCE
CVSS 8.8
CVE-2025-6950
CRITICAL
Moxa - Use After Free
CVE-2025-60639
MEDIUM
gsigel14 ATLAS-EPIC - Info Disclosure
CVSS 6.5
CVE-2025-10850
CRITICAL
Felan Framework <1.1.4 - Auth Bypass
CVSS 9.8
CVE-2025-56749
CRITICAL
Creativeitem Academy Lms < 6.14 - Hard-coded Credentials
CVSS 9.4
CVE-2025-36087
HIGH
IBM Security Verify Access < 10.0.9 - Hard-coded Credentials
CVSS 8.1
CVE-2025-11643
LOW
Tomofun Furbo - Hard-coded Credentials
CVSS 3.7
CVE-2025-61926
MEDIUM
Allstar <4.5 - Auth Bypass
CVE-2025-10609
MEDIUM
Logo Software Inc. TigerWings ERP <3.03.00 - Info Disclosure
CVSS 5.9
Details
Vulnerabilities
1,663
Exploit Likelihood
High