• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-798

CVE-2022-28812

February 23, 2023 by godfreyd94

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain SuperUser access to the device.

CVE-2022-28605

February 23, 2023 by godfreyd94

Hardcoded admin token in SoundBar apps in Linkplay SDK 1.00 allows remote attackers to gain admin privilege access in linkplay antifactory

CVE-2022-27506

February 23, 2023 by godfreyd94

Hard-coded credentials allow administrators to access the shell via the SD-WAN CLI

CVE-2022-27172

February 23, 2023 by godfreyd94

A hard-coded password vulnerability exists in the console infactory functionality of InHand Networks InRouter302 V3.5.37. A specially-crafted network request can lead to privileged operation execution. An attacker can send a sequence of requests to trigger this vulnerability.

CVE-2022-26660

February 23, 2023 by godfreyd94

RunAsSpc 4.0 uses a universal and recoverable encryption key. In possession of a file encrypted by RunAsSpc, an attacker can recover the credentials that were used.

CVE-2022-26671

February 23, 2023 by godfreyd94

Taiwan Secom Dr.ID Access Control system’s login page has a hard-coded credential in the source code. An unauthenticated remote attacker can use the hard-coded credential to acquire partial system information and modify system setting to cause partial disrupt of service.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 118
  • Go to page 119
  • Go to page 120
  • Go to page 121
  • Go to page 122
  • Interim pages omitted …
  • Go to page 130
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE