VYPR

CWE-1392

Use of Default Credentials

BaseIncomplete

Description

The product uses default credentials (such as passwords or cryptographic keys) for potentially critical functionality.

It is common practice for products to be designed to use default keys, passwords, or other mechanisms for authentication. The rationale is to simplify the manufacturing process or the system administrator's task of installation and deployment into an enterprise. However, if admins do not change the defaults, it is easier for attackers to bypass authentication quickly across multiple organizations.

Hierarchy (View 1000)

CVEs mapped to this weakness (57)

page 3 of 3
  • CVE-2024-45068HigDec 3, 2024
    risk 0.46cvss 7.1epss 0.00

    Authentication credentials leakage vulnerability in Hitachi Ops Center Common Services within Hitachi Ops Center OVA. This issue affects Hitachi Ops Center Common Services: from 10.9.3-00 before 11.0.3-00; Hitachi Ops Center OVA: from 10.9.3-00 before 11.0.2-01.

  • CVE-2025-1531MedMay 16, 2025
    risk 0.42cvss 6.5epss 0.00

    Authentication credentials leakage vulnerability in Hitachi Ops Center Analyzer viewpoint.This issue affects Hitachi Ops Center Analyzer viewpoint: from 10.0.0-00 before 11.0.4-00.

  • CVE-2025-55110MedSep 16, 2025
    risk 0.36cvss 5.5epss 0.00

    Control-M/Agents use a kdb or PKCS#12 keystore by default, and the default keystore password is well known and documented. An attacker with read access to the keystore could access sensitive data using this password.

  • CVE-2025-55740MedAug 19, 2025
    risk 0.35cvss 6.5epss 0.00

    nginx-defender is a high-performance, enterprise-grade Web Application Firewall (WAF) and threat detection system engineered for modern web infrastructure. This is a configuration vulnerability affecting nginx-defender deployments. Example configuration files config.yaml and…

  • CVE-2025-36221MedMay 26, 2026
    risk 0.34cvss 5.3epss 0.00

    IBM Cloud Pak for Data System - Cyclops 11.3.0.2 through Interim Fix 002 IBM Cloud Pak for Data System uses default passwords default passwords from the manufacturing process for use during the installation process, which could allow an attacker to bypass authentication.

  • CVE-2025-29525MedAug 25, 2025
    risk 0.34cvss 5.3epss 0.00

    DASAN GPON ONU H660WM OS version H660WMR210825 Hardware version DS-E5-583-A1 was discovered to contain insecure default credentials in the modem's control panel.

  • CVE-2025-2184MedAug 13, 2025
    risk 0.34cvss epss 0.00

    A credential management flaw in Palo Alto Networks Cortex XDR® Broker VM causes different Broker VM images to share identical default credentials for internal services. Users knowing these default credentials could access internal services on other Broker VM installations. The…

  • CVE-2024-5632MedJul 9, 2024
    risk 0.34cvss epss 0.00

    Longse NVR (Network Video Recorder) model NVR3608PGE2W, as well as products based on this device, create a WiFi network with a default password. A user is neither advised to change it during the installation process, nor such a need is described in the manual. As the cameras…

  • CVE-2025-7907MedJul 20, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. It has been classified as problematic. Affected is an unknown function of the file ruoyi-admin/src/main/resources/application-druid.yml of the component Druid. The manipulation leads to use of default credentials. It…

  • CVE-2025-6951MedJul 1, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability classified as problematic was found in SAFECAM X300 up to 20250611. This vulnerability affects unknown code of the component FTP Service. The manipulation leads to use of default credentials. Access to the local network is required for this attack to succeed. The…

  • CVE-2025-2341LowMar 16, 2025
    risk 0.20cvss 3.1epss 0.00

    A vulnerability was found in IROAD Dash Cam X5 up to 20250203. It has been rated as problematic. This issue affects some unknown processing of the component SSID. The manipulation leads to use of default credentials. The attack needs to be initiated within the local network. The…

  • CVE-2025-9577LowAug 28, 2025
    risk 0.16cvss 2.5epss 0.00

    A security flaw has been discovered in TOTOLINK X2000R up to 2.0.0. The affected element is an unknown function of the file /etc/shadow.sample of the component Administrative Interface. The manipulation results in use of default credentials. Attacking locally is a requirement.…

  • CVE-2025-9576LowAug 28, 2025
    risk 0.16cvss 2.5epss 0.00

    A vulnerability was identified in seeedstudio ReSpeaker LinkIt7688. Impacted is an unknown function of the file /etc/shadow of the component Administrative Interface. The manipulation leads to use of default credentials. An attack has to be approached locally. A high degree of…

  • CVE-2025-2119LowMar 9, 2025
    risk 0.13cvss 2.0epss 0.00

    A vulnerability was found in Thinkware Car Dashcam F800 Pro up to 20250226. It has been declared as problematic. This vulnerability affects unknown code of the component Device Registration Handler. The manipulation leads to use of default credentials. It is possible to launch…

  • CVE-2025-54137Jul 22, 2025
    risk 0.00cvss epss 0.00

    HAX CMS NodeJS allows users to manage their microsite universe with a NodeJS backend. Versions 11.0.9 and below were distributed with hardcoded default credentials for the user and superuser accounts. Additionally, the application has default private keys for JWTs. Users aren't…

  • CVE-2025-52997Jun 30, 2025
    risk 0.00cvss epss 0.00

    File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. Prior to version 2.34.1, a missing password policy and brute-force protection makes the authentication process insecure. Attackers…

  • CVE-2024-6535Jul 17, 2024
    risk 0.00cvss epss 0.01

    A flaw was found in Skupper. When Skupper is initialized with the console-enabled and with console-auth set to Openshift, it configures the openshift oauth-proxy with a static cookie-secret. In certain circumstances, this may allow an attacker to bypass authentication to the…