Fallos del tipo CWE-798
822 resultadosCVE-2021-20025—SonicWall Email Security Virtual Appliance version 10.0.9 and earlier versions contain a default username and a password that is used at iniEPSS 0.4%CVE-2026-42251HIGHHard-coded credentials in KS-SOMEDEPSS 0.4%CVE-2020-37220HIGHHuawei HG630 V2 Router Authentication Bypass via Serial NumberEPSS 0.4%CVE-2023-39422MEDIUMUse of Hard-coded Credentials in multiple /irmdata/api/ endpointsEPSS 0.4%CVE-2025-4569HIGHAn insecure sensitive key storage issue was found in MyASUS. potentially allowing unauthorized actor to obtain a token that could be used toEPSS 0.4%CVE-2025-4570MEDIUMAn insecure sensitive key storage issue was found in MyASUS. potentially allowing unauthorized actor to obtain a token that could be used toEPSS 0.4%CVE-2026-10557CRITICALYarbo Android/iOS Mobile Application and Cloud Infrastructure Use of Hard-coded CredentialsEPSS 0.4%CVE-2019-20471HIGHAn issue was discovered on TK-Star Q90 Junior GPS horloge 3.1042.9.8656 devices. When using the device at initial setup, a default password EPSS 0.4%CVE-2026-45631CRITICALDokploy: Pre-Auth Admin Takeover via Hardcoded Authentication SecretEPSS 0.4%CVE-2026-11849CRITICALIEI Integration Corp|iRM-IEI Remote Management - Hard-coded CredentialsEPSS 0.4%CVE-2023-37215MEDIUM JBL soundbar multibeam 5.1 - CWE-798: Use of Hard-coded CredentialsEPSS 0.4%CVE-2023-41611MEDIUMVicture PC420 1.1.39 was discovered to use a weak and partially hardcoded key to encrypt data.EPSS 0.4%CVE-2023-50124MEDIUMFlient Smart Door Lock v1.0 is vulnerable to Use of Default Credentials. Due to default credentials on a debug interface, in combination witEPSS 0.4%CVE-2017-12350—A vulnerability in Cisco Umbrella Insights Virtual Appliances 2.1.0 and earlier could allow an authenticated, local attacker to log in to anEPSS 0.3%CVE-2024-27107CRITICALWeak account password in GE HealthCare EchoPAC productsEPSS 0.3%CVE-2023-32619HIGHArcher C50 firmware versions prior to 'Archer C50(JP)_V3_230505' and Archer C55 firmware versions prior to 'Archer C55(JP)_V1_230506' use haEPSS 0.3%CVE-2025-48748CRITICALNetwrix Directory Manager (formerly Imanami GroupID) through v.10.0.7784.0 has a hard-coded password.EPSS 0.3%CVE-2023-41137HIGHSymmetric encryption used to protect messages between the AppsAnywhere server and client can be broken by reverse engineering the client andEPSS 0.3%CVE-2026-28674HIGHxiaoheiFS Vulnerable to RCE via Arbitrary Payment Plugin Upload (Automatic Execution)EPSS 0.3%CVE-2024-48539CRITICALNeye3C v4.5.2.0 was discovered to contain a hardcoded encryption key in the firmware update mechanism.EPSS 0.3%