CWE-798

High likelihood

Use of Hard-coded Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

1,722 vulnerabilities with CWE-798
CVE-2013-3542 CRITICAL
Grandstream Gxv3501 Firmware - Hard-coded Credentials
CVSS 10.0
CVE-2012-6611 CRITICAL
Polycom HDX System Software < 3.0.5 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2012-4381 HIGH
MediaWiki < 1.18.5 and 1.19.x < 1.19.2 - Use of Hard-coded Credentials
CVSS 8.1
CVE-2012-5686 CRITICAL
ZPanel 10.0.1 - Weak Password Recovery Mechanism
CVSS 9.8
CVE-2012-2166 CRITICAL
IBM XIV Storage System Hard-coded Credentials Vulnerability
CVSS 9.8
CVE-2012-4712
Moxa EDR-G903 Firmware < 2.11 - Use of Hard-coded Credentials
CVE-2012-6428
Carlo Gavazzi EOS-Box < 1.0.0.1080_2.1.10 - Hard-coded Passwords in PHP File
CVE-2012-3503 CRITICAL
Katello < 1.0 - Use of Hard-coded Credentials in Installation Script
CVSS 9.8
CVE-2010-2772 HIGH
Siemens Simatic WinCC PCS 7 SCADA - Privilege Escalation
CVSS 7.8
CVE-2010-2073 HIGH
Pyftpd 0.8.4 - Use of Hard-coded Credentials
CVSS 7.5
CVE-2010-1573 CRITICAL
Linksys WAP54Gv3 <3.04.03 - Command Injection
CVSS 9.8
CVE-2009-5154 CRITICAL
MOBOTIX S14 Firmware - Use of Hard-coded Credentials
CVSS 9.8
CVE-2008-2369 CRITICAL
Red Hat Satellite < 5.1.1 - Use of Hard-coded Credentials in manzier.pxt
CVSS 9.1
CVE-2008-0961 CRITICAL
EMC DiskXtender 6.20.060 - Use of Hard-coded Credentials
CVSS 9.8
CVE-2008-1160 CRITICAL
ZyXEL ZyWALL 1050 - Privilege Escalation
CVSS 9.8
CVE-2007-1063
Cisco Unified IP Phone - Auth Bypass
CVE-2006-7142 HIGH
Utimaco Safeguard - Use of Hard-coded Cryptographic Keys in Centralized Management
CVSS 7.8
CVE-2006-7074
SmartSiteCMS 1.0 - Unauthenticated Authentication Bypass via userName Cookie
CVE-2005-3803 HIGH
Cisco Unified Wireless IP Phone 7920 Firmware 1.0(8) - Use of Hard-coded SNMP Community Strings
CVSS 7.5
CVE-2005-3716 HIGH
UTStarcom F1000 Wi-Fi Firmware - Use of Hard-coded Credentials in SNMP Daemon
CVSS 7.5
CVE-2005-0496 CRITICAL
Arkeia Network Backup Client 5.x - Use of Hard-coded Credentials
CVSS 9.8
CVE-2000-1139
Microsoft Exchange 2000 - Privilege Escalation
Details
Vulnerabilities 1,722
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits