Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-798

CWE-798

High likelihood

Use of Hard-coded Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

1,721 vulnerabilities with CWE-798

CVE-2018-8870 MEDIUM

Medtronic 24950-24952 - Privilege Escalation

CVE-2018-12924 CRITICAL

eztcp CIE-H10/H12/H14 and CSE-M53N/M32/M24/M73/B63N2 Firmware - Use of Hard-coded Credentials

CVE-2018-4846 CRITICAL

Siemens RAPIDPoint 400/500 and RAPIDLab 1200 Firmware - Use of Hard-coded Credentials

CVE-2018-12526 CRITICAL

Telesquare SDT-CS3B1/SDT-CW3B1 <1.2.0 - Info Disclosure

CVE-2018-6213 CRITICAL

D-Link DIR-620 Firmware 1.0.3/1.0.37/1.3.1/1.3.3/1.3.7/1.4.0/2.0.22 - Use of Hard-coded Credentials

CVE-2018-6210 CRITICAL

D-Link DIR-620 Firmware 1.0.37 - Use of Hard-coded Credentials via TELNET

CVE-2018-12323 MEDIUM

Momentum Axel 720P <5.1.8 - Info Disclosure

CVE-2018-0329 MEDIUM

Cisco Wide Area Application Services - Unauthenticated SNMP Data Exposure via Hard-coded Community String

CVE-2018-10966 HIGH

GamerPolls 0.4.6 - Session Hijacking via Hard-coded Secret in Passport.js

CVE-2018-10813 HIGH

Dedos-web 1.0 - Use of Hard-coded Credentials in Express.js Session Secrets

CVE-2018-11682 CRITICAL

Lutron Stanza, RadioRA 2, and HomeWorks QS Firmware - Use of Hard-coded Credentials via TELNET

CVE-2018-11681 CRITICAL

Lutron Stanza, RadioRA 2, and HomeWorks QS Firmware - Use of Hard-coded Credentials via TELNET

CVE-2018-11629 CRITICAL

Lutron Stanza, RadioRA 2, and HomeWorks QS Firmware - Use of Hard-coded Credentials

CVE-2018-11482 CRITICAL

TP-LINK IPC TL-IPC223(P)-6, TL-IPC323K-D, TL-IPC325(KP)-*, TL-IPC40A-4 < 1.0.21 - Hard-coded Credentials

CVE-2018-11311 CRITICAL

mySCADA myPRO 7 - Use of Hard-coded Credentials in myscadagate.exe

CVE-2018-0222 CRITICAL

Cisco Digital Network Architecture Center < 1.1.3 - Unauthenticated Remote Code Execution via Default Credentials

CVE-2018-11094 CRITICAL

Intelbras NCLOUD 300 1.0 - Unauthenticated Information Disclosure via ExportSettings.sh

CVE-2018-9112 CRITICAL

Foxconn AP-FC4064-T Firmware - Use of Hard-coded Credentials and Privilege Escalation via Cookie Manipulation

CVE-2018-10723 CRITICAL

Directus 6.4.9 - Use of Hard-coded Credentials

CVE-2018-8857 HIGH

Philips Brilliance CT <2.6.2 - Info Disclosure

CVE-2018-10167 HIGH

TP-Link EAP/Omada Controller <2.6.0 - Privilege Escalation

CVE-2018-6401 CRITICAL

Meross MSS110 Firmware < 1.1.24 - Unauthenticated Access via Hard-coded TELNET Credentials

CVE-2018-10575 CRITICAL

WatchGuard AP100-AP200 <1.2.9.15 - Info Disclosure

CVE-2018-10328 HIGH

Momentum Axel 720P <5.1.8 - Info Disclosure

CVE-2018-7241 CRITICAL

Schneider Electric Modicon and BMXNOR0200 Controllers - Use of Hard-coded Credentials

Previous Page 60 of 69 Next

Details

Vulnerabilities 1,721

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy