CWE-798 (使用硬编码的凭证) — Vulnerability Class 550

550 vulnerabilities classified as CWE-798 (使用硬编码的凭证). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2023-40717	FortiTester 信任管理问题漏洞 — FortiTester	5.0	Medium	2023-09-13
CVE-2023-39422	Use of Hard-coded Credentials in multiple /irmdata/api/ endpoints — IRM Next Generation	6.5	Medium	2023-09-07
CVE-2023-39421	Use of Hard-coded Credentials in RDPWin.dll — IRM Next Generation	7.7	High	2023-09-07
CVE-2023-39420	Use of Hard-coded Credentials in RDPCore.dll — IRM Next Generation	9.9	Critical	2023-09-07
CVE-2023-31173	Use of Hard-coded Credentials — SEL-5037 SEL Grid Configurator	7.7	High	2023-08-31
CVE-2023-38026	SpotCam Co., Ltd. SpotCamFHD - Use of Hard-coded Cryptographic Key -2 — SpotCam FHD 2	9.8	Critical	2023-08-28
CVE-2023-38024	SpotCam Co., Ltd. SpotCamFHD - Use of Hard-coded Cryptographic Key -1 — SpotCam FHD 2	9.8	Critical	2023-08-28
CVE-2022-3744	Lenovo Notebook 信任管理问题漏洞 — Notebook	6.7	Medium	2023-08-23
CVE-2023-4204	NPort IAW5000A-I/O Series Hardcoded Credential Vulnerability — NPort IAW5000A-I/O Series	5.4	Medium	2023-08-16
CVE-2023-3264	Dataprobe 信任管理问题漏洞 — iBoot PDU	6.7	Medium	2023-08-14
CVE-2023-3262	Dataprobe 信任管理问题漏洞 — iBoot PDU	6.7	Medium	2023-08-14
CVE-2023-37857	PHOENIX CONTACT: Use of Hard-coded Credentials in WP 6xxx Web panels — WP 6070-WVPS	3.8	Low	2023-08-09
CVE-2023-37215	JBL soundbar multibeam 5.1 - CWE-798: Use of Hard-coded Credentials — soundbar multibeam	6.2	Medium	2023-07-30
CVE-2023-32227	Synel SYnergy Fingerprint Terminals - CWE-798: Use of Hard-coded Credentials — SYnergy Fingerprint Terminals	9.8	Critical	2023-07-30
CVE-2023-37287	SmartBPM.NET - Use of Hard-Coded Credentials - 2 — SmartBPM.NET	9.1	Critical	2023-07-10
CVE-2023-37286	SmartBPM.NET - Use of Hard-Coded Credentials - 1 — SmartBPM.NET	9.8	Critical	2023-07-10
CVE-2023-35987	PiiGAB M-Bus Use of Hard-coded Credentials — M-Bus SoftwarePack	9.8	Critical	2023-07-06
CVE-2023-34473	Usage of Hard-coded Credentials — MegaRAC_SPx	6.6	Medium	2023-07-05
CVE-2023-2611	Advantech R-SeeNet Use of Hard-coded Credentials — R-SeeNet	9.8	Critical	2023-06-22
CVE-2023-32274	Enphase Installer Toolkit Android App Use of Hard-coded Credentials — Enphase Installer Toolkit	8.6	High	2023-06-20
CVE-2023-33920	Siemens CP-8031 信任管理问题漏洞 — CP-8031 MASTER MODULE	6.8	Medium	2023-06-13
CVE-2022-47617	Hitron Technologies Inc. CODA-5310 - Hard-coded Cryptographic Key — Hitron CODA-5310	7.2	High	2023-06-02
CVE-2022-4333	Sprecher: Sprecon maintenance access with hardcoded credentials — SPRECON-E CPU PU243x	9.8	Critical	2023-06-01
CVE-2023-31184	ROZCOM client — client	6.2	Medium	2023-05-30
CVE-2023-2504	多款BirdDog产品信任管理问题漏洞 — STUDIO R3	8.4	High	2023-05-22
CVE-2023-33236	MXsecurity Hardcoded Credential Vulnerability — MXsecurity Series	9.8	Critical	2023-05-22
CVE-2023-26203	Fortinet FortiNAC 信任管理问题漏洞 — FortiNAC	6.1	Medium	2023-05-03
CVE-2023-2138	Use of Hard-coded Credentials in nuxtlabs/github-module — nuxtlabs/github-module	9.8	-	2023-04-18
CVE-2023-28503	Authentication bypass in UniRPC's udadmin service — UniData	9.8	-	2023-03-29
CVE-2022-22512	VARTA: Multiple devices prone to hard-coded credentials — Element backup	9.8	Critical	2023-03-23

Vulnerabilities classified as CWE-798 (使用硬编码的凭证) represent 550 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-798 (使用硬编码的凭证) — Vulnerability Class 550