CWE-798

High likelihood

Use of Hard-coded Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

1,712 vulnerabilities with CWE-798
CVE-2025-8857 CRITICAL
Clinic Image System - Info Disclosure
CVSS 9.8
CVE-2025-9380 HIGH
FNKvision Y215 CCTV Camera - Info Disclosure
CVSS 7.8
CVE-2025-51606 HIGH
hippo4j-core 1.0.0-1.5.0 - Use of Hard-coded Credentials in JWT Secret Key
CVSS 8.8
CVE-2025-9310 MEDIUM
yeqifu carRental <3fabb7eae93d209426638863980301d6f99866b3 - Info D...
CVSS 5.3
CVE-2025-9309 LOW
Tenda AC10 16.03.10.13 - Info Disclosure
CVSS 2.5
CVE-2025-33100 MEDIUM
IBM Concert Software <1.2 - Info Disclosure
CVSS 6.2
CVE-2025-7342 HIGH
Kubernetes Image Builder - Privilege Escalation
CVSS 7.5
CVE-2025-9091 LOW
Tenda AC20 16.03.08.12 - Info Disclosure
CVSS 2.5
CVE-2025-8974 LOW
linlinjava litemall <1.8.0 - Info Disclosure
CVSS 3.7
CVE-2025-43982 CRITICAL
Shenzhen Tuoshi NR500-EA RG500UEAABxCOMSLICv3.4.2731.16.43 - Hard-coded Root Account
CVSS 9.8
CVE-2025-55279 MEDIUM
ZKTeco WL20 <= ZLM31-FXO1-3.1.8 - Hard-coded Private Key Exposure
CVE-2025-54465 MEDIUM
ZKTeco WL20 Biometric Attendance System <= ZLM31-FXO1-3.1.8 - Hard-coded MQTT Credentials Exposure
CVE-2025-3831 HIGH
Harmony SASE - Exposure of Sensitive Information via Log File Upload
CVSS 8.1
CVE-2025-26398 MEDIUM
SolarWinds Database Performance Analyzer < 2025.3 - Use of Hard-coded Cryptographic Key
CVSS 5.6
CVE-2025-8730 CRITICAL
Belkin F9K1009/F9K1010 <2.00.04/2.09 - Hard-coded Credentials
CVSS 9.8
CVE-2025-7768 CRITICAL
Tigo Energy CCA - Privilege Escalation
CVE-2025-54872 HIGH
onion-site-template <3196bd89 - Info Disclosure
CVE-2025-8530 MEDIUM
eladmin < 2.7 - Use of Default Credentials in Druid Configuration
CVSS 5.3
CVE-2025-38741 HIGH
Dell Enterprise SONiC OS <4.5.0 - Info Disclosure
CVSS 7.5
CVE-2025-26476 HIGH
Dell ECS <3.8.1.5/ObjectScale 4.0.0.0 - Memory Corruption
CVSS 8.4
CVE-2025-51536 CRITICAL
OpenAtlas <8.11.0 - Info Disclosure
CVSS 9.8
CVE-2025-44643 HIGH
Draytek AP903 <1.4.18-AP918R <1.4.9 - Privilege Escalation
CVSS 8.6
CVE-2025-37112 MEDIUM
HPE Telco Network Function Virtual Orchestrator 7.0.0-7.2.9 - Use of Hard-coded Credentials
CVSS 6.0
CVE-2025-37111 MEDIUM
HPE Telco Network Function Virtual Orchestrator 7.0.0-7.2.9 - Use of Hard-coded Credentials
CVSS 6.0
CVE-2025-30125 CRITICAL
Marbella KR8s Dashcam FF <2.0.8 - Info Disclosure
CVSS 9.8
Details
Vulnerabilities 1,712
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits