Fallos del tipo CWE-798
822 resultadosCVE-2025-43982CRITICALShenzhen Tuoshi NR500-EA RG500UEAABxCOMSLICv3.4.2731.16.43 devices enable the SSH service by default. There is a hidden hard-coded root accoEPSS 0.3%CVE-2025-2343HIGHIROAD Dash Cam X5/Dash Cam X6 Device Pairing hard-coded credentialsEPSS 0.3%CVE-2026-47846CRITICALBitnami Cassandra container images are affected by a retained default superuser vulnerability. When a custom administrator account is configEPSS 0.3%CVE-2023-4204MEDIUMNPort IAW5000A-I/O Series Hardcoded Credential VulnerabilityEPSS 0.3%CVE-2020-3234HIGHCisco IOS Software for Cisco Industrial Routers Virtual Device Server Static Credentials VulnerabilityEPSS 0.3%CVE-2019-5139MEDIUMAn exploitable use of hard-coded credentials vulnerability exists in multiple iw_* utilities of the Moxa AWK-3131A firmware version 1.13. ThEPSS 0.3%CVE-2025-7342HIGHVM images built with Kubernetes Image Builder Nutanix or OVA providers use default credentials for Windows images if user did not overrideEPSS 0.3%CVE-2026-1233HIGHText to Speech (TTS) by Mementor <= 1.9.8 - Use of Hardcoded Password to Unauthenticated Remote Database AccessEPSS 0.3%CVE-2024-9334HIGHInformation Disclosure in E-Kent's Pallium Vehicle TrackingEPSS 0.3%CVE-2024-52902HIGHIBM Cognos Controller information disclosureEPSS 0.3%CVE-2026-24840HIGHDokploy uses hardcoded credentials in installation script, which could result in database accessEPSS 0.3%CVE-2024-39838HIGHZWX-2000CSW2-HN firmware versions prior to Ver.0.3.15 uses hard-coded credentials, which may allow a network-adjacent attacker with an adminEPSS 0.3%CVE-2020-36915HIGHAdtec Digital SignEdje Digital Signage Player v2.08.28 Default CredentialsEPSS 0.3%CVE-2024-49805CRITICALIBM Security Verify Access Appliance hard coded credentialsEPSS 0.3%CVE-2025-7358HIGHUse of Hard-coded Credentials in Utarit Informatics' SoliClubEPSS 0.3%CVE-2024-36556CRITICALForever KidsWatch Call Me KW50 R36_YDR_A3PW_GM7S_V1.0_2019_07_15_16.19.24_cob_h, and Forever KidsWatch Call Me 2 KW60 R36CW_YDE_S4_A29_2_V1.EPSS 0.3%CVE-2025-51606HIGHhippo4j 1.0.0 to 1.5.0, uses a hard-coded secret key in its JWT (JSON Web Token) creation. This allows attackers with access to the source cEPSS 0.3%CVE-2025-35940HIGHHard-coded ArchiverSpaApi JWT Signing KeyEPSS 0.3%CVE-2025-40938CRITICALA vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected device stores sensitive information in the firmEPSS 0.3%CVE-2025-47730MEDIUMThe TeleMessage archiving backend through 2025-05-05 accepts API calls (to request an authentication token) from the TM SGNL (aka Archive SiEPSS 0.3%