CWE-798— Use of Hard-coded Credentials
The product contains hard-coded credentials, such as a password or cryptographic key.— MITRE CWE catalog
1,625 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-798page 29 of 33
- CVE-2025-35452CRITICALCVSS 9.8EG 9.82025-09-05
PTZOptics and possibly other ValueHD-based pan-tilt-zoom cameras use default, shared credentials for the administrative web interface.
- CVE-2025-35940HIGHCVSS 8.1EG 8.12025-06-10
The ArchiverSpaApi ASP.NET application uses a hard-coded JWT signing key. An unauthenticated remote attacker can generate and use a verifiable JWT token to access protected ArchiverSpaApi URL endpoints.
- CVE-2025-36087HIGHCVSS 8.1EG 8.12025-10-13
IBM Security Verify Access 10.0.0 through 10.0.9, 11.0.0, IBM Verify Identity Access Container 10.0.0 through 10.0.9, and 11.0.0, under certain configurations, contains hard-coded credentials, such as a password or cryptographic key, which…
- CVE-2025-3621CRITICALCVSS 9.6EG 9.62025-07-15
Vulnerabilities* in ActADUR local server product, developed and maintained by ProTNS, allows Remote Code Inclusion on host systems. * vulnerabilities: * Improper Neutralization of Special Elements used in a Command ('Command Injec…
- CVE-2025-36572MEDIUMCVSS 6.5EG 6.52025-05-28
Dell PowerStore, version(s) 4.0.0.0, contain(s) an Use of Hard-coded Credentials vulnerability in the PowerStore image file. A low privileged attacker with remote access, with the knowledge of the hard-coded credentials, could potentially …
- CVE-2025-36747CRITICALCVSS 9.8EG 9.82025-12-13
ShineLan-X contains a set of credentials for an FTP server was found within the firmware, allowing testers to establish an insecure FTP connection with the server. This may allow an attacker to replace legitimate files being deployed to…
- CVE-2025-36752CRITICALCVSS 9.8EG 9.82025-12-13
Growatt ShineLan-X communication dongle has an undocumented backup account with undocumented credentials which allows significant level access to the device, such as allowing any attacker to access the Setting Center. This means that …
- CVE-2025-37103CRITICALCVSS 9.8EG 9.82025-07-08
Hard-coded login credentials were found in HPE Networking Instant On Access Points, allowing anyone with knowledge of it to bypass normal device authentication. Successful exploitation could allow a remote attacker to gain administrativ…
- CVE-2025-37111MEDIUMCVSS 6.0EG 6.02025-07-31
A vulnerability was discovered in the storage policy for certain sets of authentication keys in the HPE Telco Network Function Virtual Orchestrator. Successful Exploitation could lead to unauthorized parties gaining access to sensitive sys…
- CVE-2025-37112MEDIUMCVSS 6.0EG 6.02025-07-31
A vulnerability was discovered in the storage policy for certain sets of encryption keys in the HPE Telco Network Function Virtual Orchestrator. Successful Exploitation could lead to unauthorized parties gaining access to sensitive system …
- CVE-2025-3831HIGHCVSS 8.1EG 8.12025-08-12
Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized parties.
- CVE-2025-38741HIGHCVSS 7.5EG 7.52025-08-04
Dell Enterprise SONiC OS, version 4.5.0, contains a cryptographic key vulnerability in SSH. An unauthenticated remote attacker could potentially exploit this vulnerability, leading to unauthorized access to communication.
- CVE-2025-4041CRITICALCVSS 9.3EG 9.32025-05-06
In Optigo Networks ONS NC600 versions 4.2.1-084 through 4.7.2-330, an attacker could connect with the device's ssh server and utilize the system's components to perform OS command executions.
- CVE-2025-4049HIGHCVSS 8.6EG 8.62025-07-21
Use of hard-coded, the same among all vulnerable installations SQLite credentials vulnerability in SIGNUM-NET FARA allows to read and manipulate local-stored database.This issue affects FARA: through 5.0.80.34.
- CVE-2025-40537HIGHCVSS 7.5EG 7.52026-01-28
SolarWinds Web Help Desk was found to be susceptible to a hardcoded credentials vulnerability that, under certain situations, could allow access to administrative functions.
- CVE-2025-40938HIGHCVSS 8.1EG 8.12025-12-09
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected device stores sensitive information in the firmware. This could allow an attacker to access and misuse this information, potentially impacting the…
- CVE-2025-41109MEDIUMCVSS 4.6EG 4.62025-10-22
Ghost Robotics Vision 60 v0.27.2 includes, among its physical interfaces, three RJ45 connectors and a USB Type-C port. The vulnerability is due to the lack of authentication mechanisms when establishing connections through these ports. Spe…
- CVE-2025-4130HIGHCVSS 7.5EG 7.52025-07-21
Use of Hard-coded Credentials vulnerability in PAVO Inc. PAVO Pay allows Read Sensitive Constants Within an Executable. This issue affects PAVO Pay: before 13.05.2025.
- CVE-2025-41380MEDIUMCVSS 6.1EG 6.12025-05-23
Iridium Certus 700 version 1.0.1 has an embedded credentials vulnerability in the code. This vulnerability allows a local user to retrieve the SSH hash string.
- CVE-2025-41696MEDIUMCVSS 4.6EG 4.62025-12-09
An attacker can use an undocumented UART port on the PCB as a side-channel with the user hardcoded credentials obtained from CVE-2025-41692 to gain read access to parts of the filesystem of the device.
- CVE-2025-41722HIGHCVSS 7.5EG 7.52025-10-22
The wsc server uses a hard-coded certificate to check the authenticity of SOAP messages. An unauthenticated remote attacker can extract private keys from the Software of the affected devices.
- CVE-2025-42890CRITICALCVSS 10.0EG 10.02025-11-11
SQL Anywhere Monitor (Non-GUI) baked credentials into the code,exposing the resources or functionality to unintended users and providing attackers with the possibility of arbitrary code execution.This could cause high impact on confidentia…
- CVE-2025-4378CRITICALCVSS 10.0EG 10.02025-06-24
Cleartext Transmission of Sensitive Information, Use of Hard-coded Credentials vulnerability in Ataturk University ATA-AOF Mobile Application allows Authentication Abuse, Authentication Bypass. This issue affects ATA-AOF Mobile Applicatio…
- CVE-2025-43982CRITICALCVSS 9.8EG 9.82025-08-13
Shenzhen Tuoshi NR500-EA RG500UEAABxCOMSLICv3.4.2731.16.43 devices enable the SSH service by default. There is a hidden hard-coded root account that cannot be disabled in the GUI.
- CVE-2025-44643HIGHCVSS 8.6EG 8.62025-08-04
Certain Draytek products are affected by Insecure Configuration. This affects AP903 v1.4.18 and AP912C v1.4.9 and AP918R v1.4.9. The setting of the password property in the ripd.conf configuration file sets a hardcoded weak password, posin…
- CVE-2025-45466HIGHCVSS 8.8EG 8.82025-07-25
Unitree Go1 <= Go1_2022_05_11 is vulnerale to Incorrect Access Control due to authentication credentials being hardcoded in plaintext.
- CVE-2025-4569HIGHCVSS 7.7EG 7.72025-07-21
An insecure sensitive key storage issue was found in MyASUS. potentially allowing unauthorized actor to obtain a token that could be used to communicate with certain services. Refer to the 'Security Update for for MyASUS' section on the…
- CVE-2025-4570MEDIUMCVSS 6.9EG 6.92025-07-21
An insecure sensitive key storage issue was found in MyASUS. potentially allowing unauthorized actor to obtain a token that could be used to communicate with certain services. Refer to the 'Security Update for for MyASUS' section on the…
- CVE-2025-45746MEDIUMCVSS 6.5EG 9.82025-05-13
In ZKT ZKBio CVSecurity 6.4.1_R an unauthenticated attacker can craft JWT token using the hardcoded secret to authenticate to the service console. NOTE: the Supplier disputes the significance of this report because the service console is t…
- CVE-2025-45784CRITICALCVSS 9.8EG 9.82025-06-18
D-Link DPH-400S/SE VoIP Phone v1.01 contains hardcoded provisioning variables, including PROVIS_USER_PASSWORD, which may expose sensitive user credentials. An attacker with access to the firmware image can extract these credentials using s…
- CVE-2025-45813CRITICALCVSS 9.8EG 9.82025-07-02
ENENSYS IPGuard v2 2.10.0 was discovered to contain hardcoded credentials.
- CVE-2025-46273CRITICALCVSS 9.8EG 9.82025-04-24
UNI-NMS-Lite uses hard-coded credentials that could allow an unauthenticated attacker to gain administrative privileges to all UNI-NMS managed devices.
- CVE-2025-46274CRITICALCVSS 9.8EG 9.82025-04-24
UNI-NMS-Lite uses hard-coded credentials that could allow an unauthenticated attacker to read, manipulate and create entries in the managed database.
- CVE-2025-4633MEDIUMCVSS 6.5EG 6.52025-05-30
Default credentials were present in the web portal for Airpointer 2.4.107-2, allowing an unauthenticated malicious actor to log in via the web portal
- CVE-2025-46352CRITICALCVSS 9.8EG 9.82025-05-30
The CS5000 Fire Panel is vulnerable due to a hard-coded password that runs on a VNC server and is visible as a string in the binary responsible for running VNC. This password cannot be altered, allowing anyone with knowledge of it to ga…
- CVE-2025-46617HIGHCVSS 7.2EG 7.22025-04-25
Quantum StorNext Web GUI API before 7.2.4 grants access to internal StorNext configuration and unauthorized modification of some software configuration parameters via undocumented user credentials. This affects StorNext RYO before 7.2.4, S…
- CVE-2025-47730MEDIUMCVSS 4.8EG 4.82025-05-08
The TeleMessage archiving backend through 2025-05-05 accepts API calls (to request an authentication token) from the TM SGNL (aka Archive Signal) app with the credentials of logfile for the user and enRR8UVVywXYbFkqU#QDPRkO for the passwor…
- CVE-2025-48413HIGHCVSS 7.7EG 7.72025-05-21
The `/etc/passwd` and `/etc/shadow` files reveal hard-coded password hashes for the operating system "root" user. The credentials are shipped with the update files. There is no option for deleting or changing their passwords for an enduser…
- CVE-2025-48414MEDIUMCVSS 6.5EG 6.52025-05-21
There are several scripts in the web interface that are accessible via undocumented hard-coded credentials. The scripts provide access to additional administrative/debug functionality and are likely intended for debugging during developmen…
- CVE-2025-48491LOWCVSS 2.7EG 2.72025-05-30
Project AI is a platform designed to create AI agents. Prior to the pre-beta version, a hardcoded API key was present in the source code. This issue has been patched in the pre-beta version.
- CVE-2025-48748CRITICALCVSS 10.0EG 10.02025-05-29
Netwrix Directory Manager (formerly Imanami GroupID) through v.10.0.7784.0 has a hard-coded password.
- CVE-2025-4876MEDIUMCVSS 6.0EG 6.02025-05-19
ConnectWise-Password-Encryption-Utility.exe in ConnectWise Risk Assessment allows an attacker to extract a hardcoded AES decryption key via reverse engineering. This key is embedded in plaintext within the binary and used in cryptographic …
- CVE-2025-49551HIGHCVSS 8.8EG 8.82025-07-08
ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected by a Use of Hard-coded Credentials vulnerability that could result in privilege escalation. An attacker could leverage this vulnerability to gain unauthorized access to …
- CVE-2025-5023HIGHCVSS 7.1EG 7.12025-07-10
Use of Hard-coded Credentials vulnerability in Mitsubishi Electric Corporation photovoltaic system monitor “EcoGuideTAB” PV-DR004J all versions and PV-DR004JA all versions allows an attacker within the Wi-Fi communication range between…
- CVE-2025-51536CRITICALCVSS 9.8EG 9.82025-08-04
Austrian Archaeological Institute (AI) OpenAtlas v8.11.0 as discovered to contain a hardcoded Administrator password.
- CVE-2025-51606HIGHCVSS 8.8EG 8.82025-08-21
hippo4j 1.0.0 to 1.5.0, uses a hard-coded secret key in its JWT (JSON Web Token) creation. This allows attackers with access to the source code or compiled binary to forge valid access tokens and impersonate any user, including privileged …
- CVE-2025-5164HIGHCVSS 8.1EG 3.72025-05-26
A vulnerability has been found in PerfreeBlog 4.0.11 and classified as problematic. This vulnerability affects the function JwtUtil of the component JWT Handler. The manipulation leads to use of hard-coded cryptographic key . The attack c…
- CVE-2025-52159HIGHCVSS 8.8EG 8.82025-09-19
Hardcoded credentials in default configuration of PPress 0.0.9.
- CVE-2025-52363MEDIUMCVSS 6.8EG 6.82025-07-14
Tenda CP3 Pro Firmware V22.5.4.93 contains a hardcoded root password hash in the /etc/passwd file and /etc/passwd-. An attacker with access to the firmware image can extract and attempt to crack the root password hash, potentially obtainin…
- CVE-2025-52376CRITICALCVSS 9.8EG 9.82025-07-15
An authentication bypass vulnerability in the /web/um_open_telnet.cgi endpoint in Nexxt Solutions NCM-X1800 Mesh Router firmware UV1.2.7 and below, allowing an attacker to remotely enable the Telnet service without authentication, bypassin…
Map vulnerabilities like CWE-798 to your infrastructure
EchelonGraph correlates every CVE — across CWE-798 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →