CWE-798

High likelihood

Use of Hard-coded Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

1,722 vulnerabilities with CWE-798
CVE-2016-10177 CRITICAL
D-Link DWR-932B Firmware - Use of Hard-coded Credentials
CVSS 9.8
CVE-2016-10125 HIGH
D-Link DGS-1100 - Man-in-the-Middle
CVSS 8.1
CVE-2016-10115 CRITICAL
NETGEAR Arlo - Default Password
CVSS 9.8
CVE-2016-3685 MEDIUM
SAP Download Manager <2.1.142 - Info Disclosure
CVSS 4.7
CVE-2016-9013 CRITICAL
Django <1.8.16, 1.9.x <1.9.11, 1.10.x <1.10.3 - Info Disclosure
CVSS 9.8
CVE-2016-6829 CRITICAL
barclamp-trove and crowbar-openstack - Use of Hard-coded Credentials
CVSS 9.8
CVE-2016-2948 HIGH
IBM BigFix Remote Control - Hard-coded Credentials Exposure
CVSS 7.8
CVE-2016-7560 CRITICAL
Fortinet FortiWLC - Use of Hard-coded Credentials in rsyncd Server
CVSS 9.8
CVE-2016-6532 CRITICAL
DEXIS Imaging Suite 10 - Info Disclosure
CVSS 9.8
CVE-2016-6530 CRITICAL
Dentsply Sirona CDR Dicom <5 - Info Disclosure
CVSS 9.8
CVE-2016-6535 CRITICAL
AVer Information EH6108H+-X9.03.24.00.07l - Privilege Escalation
CVSS 9.8
CVE-2016-5678 CRITICAL
NUUO NVRmini 2 & NVRsolo <3.0.0 - Info Disclosure
CVSS 9.8
CVE-2016-5333 CRITICAL
VMware Photon OS < 1.0 - Use of Hard-coded Credentials in SSH Authorized Keys
CVSS 9.8
CVE-2016-5645 HIGH
Rockwell Automation MicroLogix - Info Disclosure
CVSS 7.3
CVE-2016-5081 CRITICAL
ZModo ZP-NE14-S and ZP-IBH-13W - Use of Hard-coded Credentials
CVSS 9.8
CVE-2016-2310 CRITICAL
GE Multilink Firmware < 5.5.0 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2015-7276 MEDIUM
Technicolor C2000T and C2100T Firmware - Use of Hard-coded Cryptographic Keys
CVSS 5.9
CVE-2015-3953 CRITICAL
Hospira Plum A+ <13.4, A+3 <13.6, Symbiq <3.13 - Hard-coded Password
CVSS 9.8
CVE-2015-9254 CRITICAL
Datto ALTO and SIRIS Firmware - Use of Hard-coded Credentials
CVSS 9.8
CVE-2015-4667 CRITICAL
Xceedium Xsuite 2.x - Use of Hard-coded Credentials
CVSS 9.8
CVE-2015-7246 CRITICAL
D-Link DVG-N5402SP Firmware W1000CN-00, W1000CN-03, W2000EN-00 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2015-2887 CRITICAL
iBaby M3S - Use of Hard-coded Credentials
CVSS 9.8
CVE-2015-2885 CRITICAL
Lens Peek-a-View Firmware - Use of Hard-coded Credentials
CVSS 9.8
CVE-2015-2882 CRITICAL
Philips In.Sight B120/37 - Info Disclosure
CVSS 9.8
CVE-2015-2881 CRITICAL
Gynoii gcw-1010 gcw-1020 gpw-1025 - Use of Hard-coded Credentials
CVSS 9.8
Details
Vulnerabilities 1,722
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits