CWE-798 (使用硬编码的凭证) — Vulnerability Class 549

549 vulnerabilities classified as CWE-798 (使用硬编码的凭证). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-64778	Mirion Medical EC2 Software NMIS BioDose Use of Hard-coded Credentials — EC2 Software NMIS BioDose	7.3	High	2025-12-02
CVE-2018-25126	TVT NVMS-9000 Hard-coded API Credentials & Command Injection — NVMS-9000	9.8^AI	Critical^AI	2025-11-24
CVE-2025-59669	Fortinet FortiWeb 信任管理问题漏洞 — FortiWeb	4.8	Medium	2025-11-18
CVE-2025-64766	NixOS has hardcoded credentials in Onlyoffice module — nixpkgs	5.3	Medium	2025-11-17
CVE-2025-13252	shsuishang ShopSuite ModulithShop RSA/OAuth2/Database hard-coded credentials — ShopSuite ModulithShop	7.3	High	2025-11-16
CVE-2025-33186	NVIDIA AIStore 信任管理问题漏洞 — AuthN component of NVIDIA AIStore	8.8	High	2025-11-11
CVE-2025-42890	Insecure key & Secret Management vulnerability in SQL Anywhere Monitor (Non-Gui) — SQL Anywhere Monitor (Non-Gui)	10.0	Critical	2025-11-11
CVE-2025-34501	Shuffle Master Deck Mate 2 Hard-coded Credentials & Exposed Services — Deck Mate 2	8.8^AI	High^AI	2025-11-03
CVE-2025-62777	Planex MZK-DP300N 信任管理问题漏洞 — MZK-DP300N	8.0^AI	High^AI	2025-10-28
CVE-2025-41109	Use of Hard-coded Credentials vulnerability in Ghost Robotics' Vision 60 — Vision 60	4.6^AI	Medium^AI	2025-10-22
CVE-2025-41722	Sauter: Hard-coded Authentication Credentials — modulo 6 devices modu680-AS	7.5	High	2025-10-22
CVE-2025-10639	Usage of Hardcoded FTP Credentials EfficientLab WorkExaminer Professional — WorkExaminer Professional	9.8^AI	Critical^AI	2025-10-21
CVE-2025-6950	Moxa多款产品安全漏洞 — EDR-G9010 Series	9.8^AI	Critical^AI	2025-10-17
CVE-2025-10850	Felan Framework <= 1.1.4 - Hardcoded Credentials — Felan Framework	9.8	Critical	2025-10-16
CVE-2025-36087	IBM Security Verify Access hard coded credentials — Security Verify Access	8.1	High	2025-10-13
CVE-2025-11643	Tomofun Furbo 360/Furbo Mini MQTT Client Certificate furbo_img hard-coded credentials — Furbo 360	3.7	Low	2025-10-12
CVE-2025-10609	Hardcoded Credentials in Logo Software's TigerWings ERP — TigerWings ERP	5.9	Medium	2025-10-03
CVE-2025-0642	Hard-coded Credentials in PosCube's Assist — Assist	6.3	Medium	2025-10-02
CVE-2025-34223	Vasion Print (formerly PrinterLogic) Insecure Installation Credentials — Print Virtual Appliance Host	9.8^AI	Critical^AI	2025-09-29
CVE-2025-34209	Vasion Print (formerly PrinterLogic) Hardcoded GPG Private Key — Print Virtual Appliance Host	6.5^AI	Medium^AI	2025-09-29
CVE-2025-34196	Vasion Print (formerly PrinterLogic) Hardcoded PrinterLogic CA Private Key and Hardcoded Password — Print Virtual Appliance Host	8.4^AI	High^AI	2025-09-29
CVE-2025-11126	Apeman ID71 system.ini hard-coded credentials — ID71	9.8	Critical	2025-09-29
CVE-2025-58269	WordPress WP Project Manager Plugin <= 2.6.25 - Sensitive Data Exposure Vulnerability — WP Project Manager	5.3	Medium	2025-09-22
CVE-2025-58656	WordPress Estonian Shipping Methods for WooCommerce Plugin <= 1.7.2 - Sensitive Data Exposure Vulnerability — Estonian Shipping Methods for WooCommerce	5.3	Medium	2025-09-22
CVE-2025-58659	WordPress Helpie FAQ plugin <= 1.45 - Sensitive Data Exposure vulnerability — Helpie FAQ	5.3	Medium	2025-09-22
CVE-2025-34198	Vasion Print (formerly PrinterLogic) Shared / Hardcoded SSH Host Private Keys in Appliance Image — Print Virtual Appliance Host	9.8	-	2025-09-19
CVE-2025-34197	Vasion Print (formerly PrinterLogic) Undocumented Local Account with Hardcoded Password and Passwordless sudo — Print Virtual Appliance Host	8.4	-	2025-09-19
CVE-2024-48842	Hardcoded passwords — FLXEON	7.0	High	2025-09-17
CVE-2025-8570	BeyondCart Connector <= 3.0.1 - Missing Configuration of JWT Secret to Unauthenticated Privilege Escalation via determine_current_user Filter — BeyondCart Connector	9.8	Critical	2025-09-11
CVE-2025-55047	Baicells SPECTRA LTE-U eNB 信任管理问题漏洞 — SPECTRA LTE-U eNB	8.4	High	2025-09-09

Vulnerabilities classified as CWE-798 (使用硬编码的凭证) represent 549 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-798 (使用硬编码的凭证) — Vulnerability Class 549