Fallos del tipo CWE-798
822 resultadosCVE-2026-25202CRITICALThe database account and password are hardcoded, allowing login with the account to manipulate the database in MagicInfo9 Server.This issue EPSS 0.4%CVE-2025-30137CRITICALAn issue was discovered in the G-Net GNET APK 2.6.2. Hardcoded credentials exist in in APK for ports 9091 and 9092. The GNET mobile applicatEPSS 0.4%CVE-2026-1221CRITICALBROWAN COMMUNICATIONS |PrismX MX100 AP controller - Use of Hard-coded CredentialsEPSS 0.4%CVE-2024-45656CRITICALIBM Flexible Service Processor hard coded credentialsEPSS 0.4%CVE-2018-0141—A vulnerability in Cisco Prime Collaboration Provisioning (PCP) Software 11.6 could allow an unauthenticated, local attacker to log in to thEPSS 0.4%CVE-2024-36480CRITICALUse of hard-coded credentials issue exists in Ricoh Streamline NX PC Client ver.3.7.2 and earlier. If this vulnerability is exploited, an atEPSS 0.4%CVE-2026-41446CRITICALWattBox 800 & 820 Series < 2.10.0.0 RCE via Diagnostic EndpointsEPSS 0.4%CVE-2024-6656HIGHHardcoded Credentals in TNB Mobile Solutions' Cockpit SoftwareEPSS 0.4%CVE-2024-46436HIGHHardcoded credentials in Tenda W18E V16.01.0.8(1625) allows unauthenticated remote attackers to gain root access to the device over the telnEPSS 0.4%CVE-2025-71317CRITICALNetMan 204 Hard-coded Backdoor CredentialsEPSS 0.4%CVE-2024-46508HIGHyeti-platform yeti before 2.1.12 allows attackers to generate valid JWT tokens is the secret is not changed (by setting YETI_AUTH_SECRET_KEYEPSS 0.4%CVE-2020-37135CRITICALAMSS++ 4.7 - Backdoor Admin AccountEPSS 0.4%CVE-2023-46102HIGHThe Android Client application, when enrolled to the AppHub server, connects to an MQTT
broker to exchange messages and receive commands toEPSS 0.4%CVE-2026-46376CRITICALFreePBX: Unauthenticated Use of Hard-Coded Credentials Vulnerability in FreePBX UCP InterfaceEPSS 0.4%CVE-2025-57578HIGHAn issue in H3C Magic M Device M2V100R006 allows a remote attacker to execute arbitrary code via the default passwordEPSS 0.4%CVE-2024-54750CRITICALUbiquiti U6-LR 6.6.65 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root.EPSS 0.4%CVE-2024-38466CRITICALShenzhen Guoxin Synthesis image system before 8.3.0 has a 123456Qw default password.EPSS 0.4%CVE-2024-36782CRITICALTOTOLINK CP300 V2.0.4-B20201102 was discovered to contain a hardcoded password vulnerability in /etc/shadow.sample, which allows attackers tEPSS 0.4%CVE-2023-41919CRITICALUse of Hard-coded Credentials in Kiloview P1/P2 devicesEPSS 0.4%CVE-2024-57811CRITICALIn Eaton X303 3.5.16 - X303 3.5.17 Build 712, an attacker with network access to a XC-303 PLC can login as root over SSH. The root password EPSS 0.4%