Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-798 (使用硬编码的凭证) — Vulnerability Class 550

550 vulnerabilities classified as CWE-798 (使用硬编码的凭证). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-32740 Siemens SIMATIC CN 4100 信任管理问题漏洞 — SIMATIC CN 4100 9.8 Critical2024-05-14
CVE-2024-23473 SolarWinds Access Rights Manager (ARM) Hard-Coded Credentials Authentication Bypass Vulnerability — Access Rights Manager 8.6 High2024-05-09
CVE-2023-51588 Voltronic Power ViewPower Pro MySQL Use of Hard-coded Credentials Local Privilege Escalation Vulnerability — ViewPower Pro 7.8 -2024-05-03
CVE-2023-44411 D-Link D-View InstallApplication Use of Hard-coded Credentials Authentication Bypass Vulnerability — D-View 9.8 -2024-05-03
CVE-2023-39458 Triangle MicroWorks SCADA Data Gateway Use of Hard-coded Credentials Authentication Bypass Vulnerability — SCADA Data Gateway 8.8 -2024-05-03
CVE-2023-35724 D-Link DAP-2622 Telnet CLI Use of Hardcoded Credentials Authentication Bypass Vulnerability — DAP-2622 8.8 -2024-05-03
CVE-2023-34284 NETGEAR RAX30 Use of Hard-coded Credentials Authentication Bypass Vulnerability — RAX30 8.8 -2024-05-03
CVE-2024-3544 LoadMaster Hardcoded SSH Key — LoadMaster 7.5 High2024-05-02
CVE-2024-29966 hard-coded credentials in the documentation that appear as the appliance root password — Brocade SANnav 7.5 High2024-04-19
CVE-2024-29963 Brocade SANnav contains hardcoded TLS keys used by Docker — Brocade SANnav 1.9 Low2024-04-19
CVE-2024-29960 Identical SSH keys utilized inside the OVA image (CVE-2024-29960) — Brocade SANnav 6.8 Medium2024-04-19
CVE-2024-31873 IBM Security Verify Access Appliance information disclosure — Security Verify Access Appliance 7.5 High2024-04-10
CVE-2024-29063 Azure AI Search Information Disclosure Vulnerability — Azure AI Search 7.3 High2024-04-09
CVE-2024-3272 D-Link DNS-320L/DNS-325/DNS-327L/DNS-340L HTTP GET Request nas_sharing.cgi hard-coded credentials — DNS-320L 9.8 Critical2024-04-04
CVE-2024-3130 Insecure Data Storage leading to sensitive Information disclosure. — eWeLink APP 5.7 Medium2024-04-01
CVE-2024-2161 Use of Hard-coded Credentials in Kiloview NDI N series products API middleware — NDI 9.8 Critical2024-03-21
CVE-2024-28194 Authentication Bypass Because of Hardcoded JWT Secret in your_spotify — your_spotify 9.1 Critical2024-03-13
CVE-2023-5456 AiLux imx6 安全漏洞 — imx6 bundle 8.1 High2024-03-05
CVE-2024-1661 Totolink X6000R shadow hard-coded credentials — X6000R 2.5 Low2024-02-20
CVE-2024-1344 Encrypted database credentials in LaborOfficeFree — LaborOfficeFree 6.8 Medium2024-02-19
CVE-2023-6255 Hardcoded Credentals in SoliClub Mobile App — SoliPay Mobile App 7.5 High2024-02-15
CVE-2024-0390 Hard-coded credentials in iZZi connect application — iZZi connect 4.6 -2024-02-15
CVE-2023-4539 Hardcoded password in Comarch ERP XL — ERP XL 7.5 High2024-02-15
CVE-2023-6409 Schneider Electric Modicon M340 信任管理问题漏洞 — EcoStruxure Control Expert 7.7 High2024-02-14
CVE-2024-23816 Siemens Location Intelligence Perpetual 信任管理问题漏洞 — Location Intelligence Perpetual Large 9.8 Critical2024-02-13
CVE-2024-22313 IBM Storage Defender - Resiliency Service information disclosure — Storage Defender - Resiliency Service 6.2 Medium2024-02-10
CVE-2024-21764 Use of Hard-Coded Credentials in Rapid SCADA — Rapid SCADA 9.8 Critical2024-02-01
CVE-2023-46706 MachineSense FeverWarn Use of Hard-coded Credentials — FeverWarn 9.1 Critical2024-02-01
CVE-2024-1039 Use of Hard-coded Credentials in Gessler GmbH WEB-MASTER — WEB-MASTER 9.8 Critical2024-02-01
CVE-2024-23619 IBM Merge Healthcare eFilm Workstation Hardcoded Credentials — eFilm Workstation 9.8 Critical2024-01-25

Vulnerabilities classified as CWE-798 (使用硬编码的凭证) represent 550 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.