Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-798 (使用硬编码的凭证) — Vulnerability Class 549

549 vulnerabilities classified as CWE-798 (使用硬编码的凭证). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-25823 Gradio contains Use of Hard-coded Credentials — gradio 5.4 Medium2023-02-23
CVE-2022-3089 EnOcean SmartServer Hard-coded credentials — Smartserver 6.3 Medium2023-02-13
CVE-2022-34449 Dell PowerPath Management Appliance 信任管理问题漏洞 — PowerPath Management Appliance 6.0 Medium2023-02-10
CVE-2023-21426 SAMSUNG Mobile devices 信任管理问题漏洞 — Samsung Mobile Devices 4.3 Medium2023-02-09
CVE-2022-42973 Schneider Electric Easy UPS Online Monitoring Software 信任管理问题漏洞 — APC Easy UPS Online Monitoring Software 7.8 High2023-02-01
CVE-2023-21524 Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2023-01-10
CVE-2022-3928 Hardcoded credential is found in the message queue — FOXMAN-UN 7.1 High2023-01-05
CVE-2022-3927 The affected products store public and private key that are used to sign and protect custom parameter set files from modification. — FOXMAN-UN 8.0 High2023-01-05
CVE-2021-40342 Use of default key for encryption — FOXMAN-UN 7.1 High2023-01-05
CVE-2023-22463 KubePi's Hardcoded Jwtsigkeys allows malicious actor to login with a forged JWT token — KubePi 9.8 -2023-01-04
CVE-2022-47618 Merit Lilin Ent. Co., Ltd. AH55B04 & AH55B08 DVR - Hard-coded Credentials — AH55B04 DVR firmware 9.8 Critical2023-01-03
CVE-2022-4611 Click Studios Passwordstate hard-coded credentials — Passwordstate 4.3 Medium2022-12-19
CVE-2021-35252 Common Key Vulnerability in Serv-U FTP Server — Serv-U FTP Server 7.5 High2022-12-16
CVE-2022-40259 MegaRAC Default Credentials Vulnerability — MegaRAC SPx12 8.3 High2022-12-05
CVE-2022-40242 MegaRAC Default Credentials Vulnerability — MegaRAC SPx12 7.5 High2022-12-05
CVE-2022-32967 Realtek RTL8111EP-CG/RTL8111FP-CG - Use of Hard-coded Credentials — RTL8111EP-CG 2.1 Low2022-11-29
CVE-2022-41157 ERP solution Remote Code Execution Vulnerability — sERP Server 2.0 8.1 High2022-11-25
CVE-2021-34577 Hardcoded credentials in Kaden PICOFLUX AiR — PICOFLUX AiR 6.5 Medium2022-11-09
CVE-2022-40263 BD Totalys MultiProcessor - Hardcoded Credentials — BD Totalys MultiProcessor 6.6 Medium2022-11-04
CVE-2022-29889 Abode Iota 信任管理问题漏洞 — iota All-In-One Security Kit 9.8 -2022-10-25
CVE-2022-29477 Abode Iota 信任管理问题漏洞 — iota All-In-One Security Kit 9.8 -2022-10-25
CVE-2022-38117 Juiker app - Hard-coded Credentials — Juiker app 5.5 Medium2022-10-24
CVE-2022-38420 Adobe ColdFusion Use of Hard-coded Credentials Application denial-of-service — ColdFusion 7.5 High2022-10-14
CVE-2022-39273 Default OAuth Authorization Server secret in FlyteAdmin — flyteadmin 4.8 Medium2022-10-06
CVE-2022-20844 Cisco Software-Defined Application Visibility and Control on Cisco vManage Static Username and Password Vulnerability — Cisco SD-WAN vManage 5.3 Medium2022-09-30
CVE-2022-28812 Use of Hard-coded Credentials in UWP3.0 allows SuperUser authentication bypass in Car Park Server. — UWP 3.0 Monitoring Gateway and Controller 9.8 Critical2022-09-28
CVE-2022-22522 Hard-coded credentials in Carlo Gavazzi UWP3.0 allows for authentication bypass and full control of the device — UWP 3.0 Monitoring Gateway and Controller 9.8 Critical2022-09-28
CVE-2022-3214 Delta Electronics DIAEnergy Use of Hard-coded Credentials — DIAEnergy 9.8 Critical2022-09-16
CVE-2022-38069 Contec Health CMS8000 — CMS8000 CONTEC ICU CCU Vital Signs Patient Monitor 4.3 Medium2022-09-13
CVE-2022-38116 Le-yan Co., Ltd. Personnel and Salary Management System - Hard-coded password — Personnel and Salary Management System 9.8 Critical2022-08-30

Vulnerabilities classified as CWE-798 (使用硬编码的凭证) represent 549 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.