Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-798

CWE-798

High likelihood

Use of Hard-coded Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

1,721 vulnerabilities with CWE-798

CVE-2019-12376 MEDIUM

Ivanti LANDESK Management Suite <10.0.1.168 - Privilege Escalation

CVE-2019-6725 CRITICAL

ZyXEL P-660HN-T1 V2 2.00(AAKK.3) - Unauthenticated Hard-coded Credential Exposure via rpWLANRedirect.asp

CVE-2019-10850 CRITICAL

Computrols Building Automation Software < 19.0.0 - Use of Hard-coded Credentials

CVE-2019-10851 MEDIUM

Computrols CBAS < 19.0.0 - Use of Hard-coded Encryption Keys

CVE-2019-6812 HIGH

BMX-NOR-0200H Firmware - Use of Hard-coded Credentials via FTP Protocol

CVE-2019-8352 CRITICAL

BMC PATROL Agent < 11.3.01 - Use of Hard-coded Credentials

CVE-2019-6572 CRITICAL

SIMATIC HMI Panels & WinCC < 15.1 - Unauthenticated Sensitive Information Exposure via SNMP

CVE-2019-10920 HIGH

Siemens LOGO! 8 BM Firmware < V8.3 - Unauthenticated Hard-coded Cryptographic Key Exposure via Port 10005/tcp

CVE-2019-6548 CRITICAL

GE Communicator < 4.0.517 - Use of Hard-coded Credentials

CVE-2019-10712 CRITICAL

WAGO Series 750-88x and 750-87x Firmware - Use of Hard-coded Credentials

CVE-2019-3939 CRITICAL

Crestron AM-100 and AM-101 - Unauthenticated Default Credential Access

CVE-2019-3938 HIGH

Crestron AM-100 and AM-101 - Insufficiently Protected Credentials in Configuration Export

CVE-2019-3932 CRITICAL

Crestron AM-100 and AM-101 - Authentication Bypass via Hard-coded Password

CVE-2019-7212 HIGH

SmarterTools SmarterMail <16.x-6985 - Info Disclosure

CVE-2019-10688 MEDIUM

Polycom UC Software <5.8.0 & BToE Connector <3.8.0 - Hard-coded Credentials

CVE-2019-9160 CRITICAL

Sangfor Sundray WLAN Controller < 3.7.4.2 - Backdoor Account and Privilege Escalation via SSH

CVE-2019-9975 HIGH

DASAN H660RM Firmware 1.03-0022 - Use of Hard-coded Credentials for Logs Encryption

CVE-2019-10479 CRITICAL

Glory RBW-100 Firmware ISP-K05-02 7.0.0 - Use of Hard-coded Credentials

CVE-2019-3710 HIGH

Dell EMC Networking OS10 < 10.4.3 - Unauthenticated Use of Hard-coded Cryptographic Keys

CVE-2019-10011 CRITICAL

Jenzabar Internet Campus Solution < 2019-02-06 - Unauthenticated Account Creation via Hardcoded Credentials

CVE-2019-7161 HIGH

Zoho ManageEngine ADSelfService Plus <5.x - Info Disclosure

CVE-2019-3497 HIGH

Wifi-soft UniBox controller 0.x-2.x - Unauthenticated Remote Command Execution via Diagnostic Tools Ping Feature

CVE-2019-3496 HIGH

Wifi-soft UniBox Controller 3.x - Unauthenticated Remote Command Execution via Hard-coded Credentials

CVE-2019-3495 HIGH

Wifi-soft UniBox 0.x-2.x - Unauthenticated Arbitrary File Upload via network/mesh/edit-nds.php

CVE-2019-1723 CRITICAL

Cisco Common Services Platform Collector 2.7.2-2.7.4.6 - Unauthenticated Default Credential Access

Previous Page 55 of 69 Next

Details

Vulnerabilities 1,721

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy