Falhas do tipo CWE-798
820 resultadosCVE-2023-2291HIGHStatic credentials exist in the PostgreSQL data used in ManageEngine Access Manager Plus (AMP) build 4309, ManageEngine Password Manager ProEPSS 0.8%CVE-2023-38995CRITICALAn issue in SCHUHFRIED v.8.22.00 allows remote attacker to obtain the database password via crafted curl command.EPSS 0.8%CVE-2022-39989CRITICALAn issue was discovered in Fighting Cock Information System 1.0, which uses default credentials, but does not force nor prompt the administrEPSS 0.8%CVE-2024-45275CRITICALMB connect line/Helmholz: Hardcoded user accounts with hard-coded passwordsEPSS 0.8%CVE-2025-35452CRITICALPan-Tilt-Zoom cameras default administrative credentials for web interfaceEPSS 0.8%CVE-2016-20026CRITICALZKTeco ZKBioSecurity 3.0 Hardcoded Credentials Remote Code ExecutionEPSS 0.8%CVE-2024-41611CRITICALIn D-Link DIR-860L REVA FIRMWARE PATCH 1.10..B04, the Telnet service contains hardcoded credentials, enabling attackers to log in remotely tEPSS 0.8%CVE-2024-29063HIGHAzure AI Search Information Disclosure VulnerabilityEPSS 0.8%CVE-2020-3301HIGHCisco Firepower Management Center Static Credential VulnerabilitiesEPSS 0.8%CVE-2022-44096CRITICALSanitization Management System v1.0 was discovered to contain hardcoded credentials which allows attackers to escalate privileges and accessEPSS 0.8%CVE-2022-42980CRITICALgo-admin (aka GO Admin) 2.0.12 uses the string go-admin as a production JWT key.EPSS 0.8%CVE-2022-44097CRITICALBook Store Management System v1.0 was discovered to contain hardcoded credentials which allows attackers to escalate privileges and access tEPSS 0.8%CVE-2025-59092HIGHUnauthenticated RPC Service in dormakaba Kaba exos 9300EPSS 0.8%CVE-2025-59091CRITICALHardcoded Legacy Accounts Allowing Control Over Access Managers in dormakaba Kaba exos 9300EPSS 0.8%CVE-2022-20844MEDIUMCisco Software-Defined Application Visibility and Control on Cisco vManage Static Username and Password VulnerabilityEPSS 0.7%CVE-2025-34198CRITICALVasion Print (formerly PrinterLogic) Shared / Hardcoded SSH Host Private Keys in Appliance ImageEPSS 0.7%CVE-2020-2500CRITICALThis improper access control vulnerability in Helpdesk allows attackers to get control of QNAP Kayako service. Attackers can access the sensEPSS 0.7%CVE-2023-1269MEDIUMUse of Hard-coded Credentials in alextselegidis/easyappointmentsEPSS 0.7%CVE-2013-10002MEDIUMTelecommunication Software SAMwin Contact Center Suite Credential SAMwinLIBVB.dll getCurrentDBVersion hard-coded credentialsEPSS 0.7%CVE-2023-2138CRITICALUse of Hard-coded Credentials in nuxtlabs/github-moduleEPSS 0.7%