CWE-798 (使用硬编码的凭证) — Vulnerability Class 549

549 vulnerabilities classified as CWE-798 (使用硬编码的凭证). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-49806	IBM Security Verify Access Appliance hard coded credentials — Security Verify Access	9.4	Critical	2024-11-29
CVE-2024-49805	IBM Security Verify Access Appliance hard coded credentials — Security Verify Access	9.4	Critical	2024-11-29
CVE-2024-36248	Sharp MFP 安全漏洞 — Multiple MFPs (multifunction printers)	9.1	Critical	2024-11-26
CVE-2024-35244	Sharp MFP 安全漏洞 — Multiple MFPs (multifunction printers)	9.1	Critical	2024-11-26
CVE-2024-10451	Org.keycloak:keycloak-quarkus-server: sensitive data exposure in keycloak build process — Red Hat build of Keycloak 24	5.9	Medium	2024-11-25
CVE-2024-11630	E-Lins H685/H685f/H700/H720/H750/H820/H820Q/H820Q0/H900 OEM Backend hard-coded credentials — H685	7.3	High	2024-11-22
CVE-2023-51638	Allegra Hard-coded Credentials Authentication Bypass Vulnerability — Allegra	9.8	-	2024-11-22
CVE-2024-49060	Azure Stack HCI Elevation of Privilege Vulnerability — Azure Stack HCI OS	8.8	High	2024-11-15
CVE-2024-48971	Clinician Password and Serial Number Clinician Password are hard-coded in Life2000 Ventilator — Life2000 Ventilation System	9.3	Critical	2024-11-14
CVE-2024-52295	DataEase has a forged JWT token vulnerability — dataease	9.8^AI	Critical^AI	2024-11-13
CVE-2024-7295	Hard-coded credentials used for temporary and cache data encryption — Telerik Report Server	7.1	High	2024-11-13
CVE-2024-50593	Hardcoded Service Password — Elefant	6.7	-	2024-11-08
CVE-2024-28875	LevelOne WBR-6012 信任管理问题漏洞 — WBR-6012	8.1	High	2024-10-30
CVE-2024-31151	LevelOne WBR-6012 信任管理问题漏洞 — WBR-6012	8.1	High	2024-10-30
CVE-2024-45656	IBM Flexible Service Processor hard coded credentials — Flexible Service Processor	9.8	Critical	2024-10-29
CVE-2024-5764	Nexus Repository 3 - Static hard-coded encryption passphrase used by default — Nexus Repository	7.2^AI	High^AI	2024-10-23
CVE-2024-4740	MXsecurity Use of Hard-coded Credentials — MXsecurity Series	5.3	Medium	2024-10-18
CVE-2024-10025	Vulnerability in SICK CLV6xx, SICK Lector6xx and SICK RFx6xx — SICK CLV6xx	9.1	Critical	2024-10-17
CVE-2024-9594	VM images built with Image Builder with some providers use default credentials during builds — Image Builder	6.3	Medium	2024-10-15
CVE-2024-9486	VM images built with Image Builder and Proxmox provider use default credentials — Image Builder	9.8	Critical	2024-10-15
CVE-2024-45275	MB connect line/Helmholz: Hardcoded user accounts with hard-coded passwords — mbNET.mini	9.8	Critical	2024-10-15
CVE-2024-8450	PLANET Technology switch devices - Hard-coded SNMPv1 read-write community string — GS-4210-24PL4C hardware 2.0	8.6	High	2024-09-30
CVE-2024-8449	PLANET Technology switch devices - Local users' passwords recovery through hard-coded credentials — GS-4210-24PL4C hardware 2.0	6.8	Medium	2024-09-30
CVE-2024-8448	PLANET Technology switch devices - Remote privilege escalation using hard-coded credentials — GS-4210-24PL4C hardware 2.0	8.8	High	2024-09-30
CVE-2024-23958	Autel MaxiCharger AC Elite Business C50 BLE Hardcoded Credentials Authentication Bypass Vulnerability — MaxiCharger AC Elite Business C50	6.5	Medium	2024-09-28
CVE-2024-45861	Use of Hard-coded Credentials in Kastle Systems Access Control System — Access Control System	9.8^AI	Critical^AI	2024-09-19
CVE-2024-6656	Hardcoded Credentals in TNB Mobile Solutions' Cockpit Software — Cockpit Software	7.5^AI	High^AI	2024-09-13
CVE-2024-28990	SolarWinds Access Rights Manager (ARM) Hardcoded Credentials Authentication Bypass Vulnerability — Access Rights Manager	6.3	Medium	2024-09-12
CVE-2024-39582	Dell InsightIQ 信任管理问题漏洞 — PowerScale InsightIQ	2.3	Low	2024-09-10
CVE-2024-35118	IBM MaaS360 information disclosure — MaaS360	4.6	Medium	2024-08-29

Vulnerabilities classified as CWE-798 (使用硬编码的凭证) represent 549 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-798 (使用硬编码的凭证) — Vulnerability Class 549