CWE-798
Allowed-with-ReviewUse of Hard-coded Credentials
Abstraction: Base · Status: Draft
The product contains hard-coded credentials, such as a password or cryptographic key.
2178 vulnerabilities reference this CWE, most recent first.
CVE-2021-34565 (GCVE-0-2021-34565)
Vulnerability from cvelistv5 – Published: 2021-08-31 10:33 – Updated: 2024-09-17 03:22- CWE-798 - Use of Hard-coded Credentials
| URL | Tags |
|---|---|
| https://cert.vde.com/en-us/advisories/vde-2021-027 | x_refsource_CONFIRM |
| Vendor | Product | Version | |
|---|---|---|---|
| Phoenix Contact | WHA-GW-F2D2-0-AS- Z2-ETH |
Affected:
3.0.7 , < 3.0.7*
(custom)
Affected: 3.0.9 , ≤ 3.0.9 (custom) |
|
| Phoenix Contact | WHA-GW-F2D2-0-AS- Z2-ETH.EIP |
Affected:
3.0.7 , < 3.0.7*
(custom)
Affected: 3.0.9 , ≤ 3.0.9 (custom) |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T00:12:50.412Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://cert.vde.com/en-us/advisories/vde-2021-027"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "WHA-GW-F2D2-0-AS- Z2-ETH",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.0.7*",
"status": "affected",
"version": "3.0.7",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.0.9",
"status": "affected",
"version": "3.0.9",
"versionType": "custom"
}
]
},
{
"product": "WHA-GW-F2D2-0-AS- Z2-ETH.EIP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.0.7*",
"status": "affected",
"version": "3.0.7",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.0.9",
"status": "affected",
"version": "3.0.9",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Pepperl+Fuchs reported this vulnerability. CERT@VDE coordinated."
}
],
"datePublic": "2021-08-16T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "In PEPPERL+FUCHS WirelessHART-Gateway 3.0.7 to 3.0.9 the SSH and telnet services are active with hard-coded credentials."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-798",
"description": "CWE-798 Use of Hard-coded Credentials",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-08-31T10:33:00.000Z",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://cert.vde.com/en-us/advisories/vde-2021-027"
}
],
"solutions": [
{
"lang": "en",
"value": "No update available."
}
],
"source": {
"advisory": "VDE-2021-027",
"discovery": "INTERNAL"
},
"title": "In WirelessHART-Gateway versions 3.0.7 to 3.0.9 hard-coded credentials have been found",
"workarounds": [
{
"lang": "en",
"value": "An external protective measure is required.\n\n* Minimize network exposure for affected products and ensure that they are not accessible via the Internet.\n* Isolate affected products from the corporate network.\n* If remote access is required, use secure methods such as virtual private networks (VPNs)."
}
],
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "info@cert.vde.com",
"DATE_PUBLIC": "2021-08-16T07:07:00.000Z",
"ID": "CVE-2021-34565",
"STATE": "PUBLIC",
"TITLE": "In WirelessHART-Gateway versions 3.0.7 to 3.0.9 hard-coded credentials have been found"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "WHA-GW-F2D2-0-AS- Z2-ETH",
"version": {
"version_data": [
{
"version_affected": "\u003e=",
"version_name": "3.0.7",
"version_value": "3.0.7"
},
{
"version_affected": "\u003c=",
"version_name": "3.0.9",
"version_value": "3.0.9"
}
]
}
},
{
"product_name": "WHA-GW-F2D2-0-AS- Z2-ETH.EIP",
"version": {
"version_data": [
{
"version_affected": "\u003e=",
"version_name": "3.0.7",
"version_value": "3.0.7"
},
{
"version_affected": "\u003c=",
"version_name": "3.0.9",
"version_value": "3.0.9"
}
]
}
}
]
},
"vendor_name": "Phoenix Contact"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Pepperl+Fuchs reported this vulnerability. CERT@VDE coordinated."
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In PEPPERL+FUCHS WirelessHART-Gateway 3.0.7 to 3.0.9 the SSH and telnet services are active with hard-coded credentials."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-798 Use of Hard-coded Credentials"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://cert.vde.com/en-us/advisories/vde-2021-027",
"refsource": "CONFIRM",
"url": "https://cert.vde.com/en-us/advisories/vde-2021-027"
}
]
},
"solution": [
{
"lang": "en",
"value": "No update available."
}
],
"source": {
"advisory": "VDE-2021-027",
"discovery": "INTERNAL"
},
"work_around": [
{
"lang": "en",
"value": "An external protective measure is required.\n\n* Minimize network exposure for affected products and ensure that they are not accessible via the Internet.\n* Isolate affected products from the corporate network.\n* If remote access is required, use secure methods such as virtual private networks (VPNs)."
}
]
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2021-34565",
"datePublished": "2021-08-31T10:33:00.698Z",
"dateReserved": "2021-06-10T00:00:00.000Z",
"dateUpdated": "2024-09-17T03:22:29.106Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-33540 (GCVE-0-2021-33540)
Vulnerability from cvelistv5 – Published: 2021-06-25 18:26 – Updated: 2024-09-17 03:18- CWE-798 - Use of Hard-coded Credentials
| URL | Tags |
|---|---|
| https://cert.vde.com/en-us/advisories/vde-2021-021 | x_refsource_CONFIRM |
| Vendor | Product | Version | |
|---|---|---|---|
| Phoenix Contact | AXL F BK |
Affected:
AXL F PN TPS XC (1068857) , < 1.30
(custom)
Affected: AXL F EIP EF (2702782) , < 1.30 (custom) |
|
| Phoenix Contact | AXL F BK |
Affected:
AXL F PN TPS (2403869) , < 1.30
(custom)
|
|
| Phoenix Contact | AXL F BK |
Affected:
AXL F EIP (2688394) , < 1.30
(custom)
Affected: AXL F ETH (2688459) , < 1.30 (custom) Affected: AXL F ETH XC (2701949) , < 1.30 (custom) Affected: AXL F S3 (2701686) , < 1.40 (custom) |
|
| Phoenix Contact | AXL F BK |
Affected:
AXL F PN (2701815) all revisions
Affected: AXL F PN XC (2701222) all revisions Affected: AXL F ETH NET2 (2702177) all revisions Affected: AXL F SAS (2701457) all revisions |
|
| Phoenix Contact | IL |
Affected:
IL PN BK-PAC (2403696) all revisions
Affected: IL PN BK DI8 DO4 2TX-PAC (2703994) all revisions Affected: IL PN BK DI8 DO4 2SCRJ-PAC (2878379) all revisions Affected: IL ETH BK DI8 DO4 2TX-XC-PAC (2701388) all revisions Affected: IL ETH BK DI8 DO4 2TX-PAC (2703981) all revisions Affected: IL EIP BK DI8 DO4 2TX-PAC (2897758) all revisions Affected: IL S3 BK DI8 DO4 2TX-PAC (2692380) all revisions |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T23:50:42.999Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://cert.vde.com/en-us/advisories/vde-2021-021"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"HW \u003c 01"
],
"product": "AXL F BK",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "1.30",
"status": "affected",
"version": "AXL F PN TPS XC (1068857)",
"versionType": "custom"
},
{
"lessThan": "1.30",
"status": "affected",
"version": "AXL F EIP EF (2702782)",
"versionType": "custom"
}
]
},
{
"platforms": [
"HW \u003c 02"
],
"product": "AXL F BK",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "1.30",
"status": "affected",
"version": "AXL F PN TPS (2403869)",
"versionType": "custom"
}
]
},
{
"platforms": [
"HW \u003c 05"
],
"product": "AXL F BK",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "1.30",
"status": "affected",
"version": "AXL F EIP (2688394)",
"versionType": "custom"
},
{
"lessThan": "1.30",
"status": "affected",
"version": "AXL F ETH (2688459)",
"versionType": "custom"
},
{
"lessThan": "1.30",
"status": "affected",
"version": "AXL F ETH XC (2701949)",
"versionType": "custom"
},
{
"lessThan": "1.40",
"status": "affected",
"version": "AXL F S3 (2701686)",
"versionType": "custom"
}
]
},
{
"product": "AXL F BK",
"vendor": "Phoenix Contact",
"versions": [
{
"status": "affected",
"version": "AXL F PN (2701815) all revisions"
},
{
"status": "affected",
"version": "AXL F PN XC (2701222) all revisions"
},
{
"status": "affected",
"version": "AXL F ETH NET2 (2702177) all revisions"
},
{
"status": "affected",
"version": "AXL F SAS (2701457) all revisions"
}
]
},
{
"product": "IL",
"vendor": "Phoenix Contact",
"versions": [
{
"status": "affected",
"version": "IL PN BK-PAC (2403696) all revisions"
},
{
"status": "affected",
"version": "IL PN BK DI8 DO4 2TX-PAC (2703994) all revisions"
},
{
"status": "affected",
"version": "IL PN BK DI8 DO4 2SCRJ-PAC (2878379) all revisions"
},
{
"status": "affected",
"version": "IL ETH BK DI8 DO4 2TX-XC-PAC (2701388) all revisions"
},
{
"status": "affected",
"version": "IL ETH BK DI8 DO4 2TX-PAC (2703981) all revisions"
},
{
"status": "affected",
"version": "IL EIP BK DI8 DO4 2TX-PAC (2897758) all revisions"
},
{
"status": "affected",
"version": "IL S3 BK DI8 DO4 2TX-PAC (2692380) all revisions"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "This vulnerability was discovered by Secuvera. PHOENIX CONTACT thanks CERT@VDE for the coordination and support with this publication."
}
],
"datePublic": "2021-06-23T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "In certain devices of the Phoenix Contact AXL F BK and IL BK product families an undocumented password protected FTP access to the root directory exists."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-798",
"description": "CWE-798 Use of Hard-coded Credentials",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-06-25T18:26:04.000Z",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://cert.vde.com/en-us/advisories/vde-2021-021"
}
],
"solutions": [
{
"lang": "en",
"value": "Please refer to the advisory (https://cert.vde.com/en-us/advisories/vde-2021-021) for a list of updated firmware versions for remediation."
}
],
"source": {
"advisory": "VDE-2021-021",
"defect": [
"VDE-2021-021"
],
"discovery": "EXTERNAL"
},
"title": "Phoenix Contact: Undocumented FTP acces in certain AXL F BK and IL BK devices",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "info@cert.vde.com",
"DATE_PUBLIC": "2021-06-23T10:00:00.000Z",
"ID": "CVE-2021-33540",
"STATE": "PUBLIC",
"TITLE": "Phoenix Contact: Undocumented FTP acces in certain AXL F BK and IL BK devices"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "AXL F BK",
"version": {
"version_data": [
{
"platform": "HW \u003c 01",
"version_affected": "\u003c",
"version_name": "AXL F PN TPS XC (1068857)",
"version_value": "1.30"
},
{
"platform": "HW \u003c 02",
"version_affected": "\u003c",
"version_name": "AXL F PN TPS (2403869)",
"version_value": "1.30"
},
{
"platform": "HW \u003c 05",
"version_affected": "\u003c",
"version_name": "AXL F EIP (2688394)",
"version_value": "1.30"
},
{
"platform": "HW \u003c 01",
"version_affected": "\u003c",
"version_name": "AXL F EIP EF (2702782)",
"version_value": "1.30"
},
{
"platform": "HW \u003c 05",
"version_affected": "\u003c",
"version_name": "AXL F ETH (2688459)",
"version_value": "1.30"
},
{
"platform": "HW \u003c 05",
"version_affected": "\u003c",
"version_name": "AXL F ETH XC (2701949)",
"version_value": "1.30"
},
{
"platform": "HW \u003c 05",
"version_affected": "\u003c",
"version_name": "AXL F S3 (2701686)",
"version_value": "1.40"
},
{
"version_affected": "=",
"version_name": "AXL F PN (2701815)",
"version_value": "all revisions"
},
{
"version_affected": "=",
"version_name": "AXL F PN XC (2701222)",
"version_value": "all revisions"
},
{
"version_affected": "=",
"version_name": "AXL F ETH NET2 (2702177)",
"version_value": "all revisions"
},
{
"version_affected": "=",
"version_name": "AXL F SAS (2701457)",
"version_value": "all revisions"
}
]
}
},
{
"product_name": "IL",
"version": {
"version_data": [
{
"version_affected": "=",
"version_name": "IL PN BK-PAC (2403696)",
"version_value": "all revisions"
},
{
"version_affected": "=",
"version_name": "IL PN BK DI8 DO4 2TX-PAC (2703994)",
"version_value": "all revisions"
},
{
"version_affected": "=",
"version_name": "IL PN BK DI8 DO4 2SCRJ-PAC (2878379)",
"version_value": "all revisions"
},
{
"version_affected": "=",
"version_name": "IL ETH BK DI8 DO4 2TX-XC-PAC (2701388)",
"version_value": "all revisions"
},
{
"version_affected": "=",
"version_name": "IL ETH BK DI8 DO4 2TX-PAC (2703981)",
"version_value": "all revisions"
},
{
"version_affected": "=",
"version_name": "IL EIP BK DI8 DO4 2TX-PAC (2897758)",
"version_value": "all revisions"
},
{
"version_affected": "=",
"version_name": "IL S3 BK DI8 DO4 2TX-PAC (2692380)",
"version_value": "all revisions"
}
]
}
}
]
},
"vendor_name": "Phoenix Contact"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "This vulnerability was discovered by Secuvera. PHOENIX CONTACT thanks CERT@VDE for the coordination and support with this publication."
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In certain devices of the Phoenix Contact AXL F BK and IL BK product families an undocumented password protected FTP access to the root directory exists."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-798 Use of Hard-coded Credentials"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://cert.vde.com/en-us/advisories/vde-2021-021",
"refsource": "CONFIRM",
"url": "https://cert.vde.com/en-us/advisories/vde-2021-021"
}
]
},
"solution": [
{
"lang": "en",
"value": "Please refer to the advisory (https://cert.vde.com/en-us/advisories/vde-2021-021) for a list of updated firmware versions for remediation."
}
],
"source": {
"advisory": "VDE-2021-021",
"defect": [
"VDE-2021-021"
],
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2021-33540",
"datePublished": "2021-06-25T18:26:04.688Z",
"dateReserved": "2021-05-24T00:00:00.000Z",
"dateUpdated": "2024-09-17T03:18:18.324Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-33531 (GCVE-0-2021-33531)
Vulnerability from cvelistv5 – Published: 2021-06-25 18:25 – Updated: 2024-09-16 23:16- CWE-798 - Use of Hard-coded Credentials
| URL | Tags |
|---|---|
| https://cert.vde.com/en-us/advisories/vde-2021-026 | x_refsource_CONFIRM |
| Vendor | Product | Version | |
|---|---|---|---|
| Weidmüller | IE-WL(T)-BL-AP-CL-XX |
Affected:
IE-WL-BL-AP-CL-EU (2536600000) , ≤ V1.16.18 (Build 18081617)
(custom)
Affected: IE-WLT-BL-AP-CL-EU (2536650000) , ≤ V1.16.18 (Build 18081617) (custom) Affected: IE-WL-BL-AP-CL-US (2536660000) , ≤ V1.16.18 (Build 18081617) (custom) Affected: IE-WLT-BL-AP-CL-US (2536670000) , ≤ V1.16.18 (Build 18081617) (custom) |
|
| Weidmüller | IE-WL(T)-VL-AP-CL-XX |
Affected:
IE-WL-VL-AP-BR-CL-EU (2536680000) , ≤ V1.11.10 (Build 18122616)
(custom)
Affected: IE-WLT-VL-AP-BR-CL-EU (2536690000) , ≤ V1.11.10 (Build 18122616) (custom) Affected: IE-WL-VL-AP-BR-CL-US (2536700000) , ≤ V1.11.10 (Build 18122616) (custom) Affected: IE-WLT-VL-AP-BR-CL-US (2536710000) , ≤ V1.11.10 (Build 18122616) (custom) |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T23:50:42.986Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://cert.vde.com/en-us/advisories/vde-2021-026"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "IE-WL(T)-BL-AP-CL-XX",
"vendor": "Weidm\u00fcller",
"versions": [
{
"lessThanOrEqual": "V1.16.18 (Build 18081617)",
"status": "affected",
"version": "IE-WL-BL-AP-CL-EU (2536600000)",
"versionType": "custom"
},
{
"lessThanOrEqual": "V1.16.18 (Build 18081617)",
"status": "affected",
"version": "IE-WLT-BL-AP-CL-EU (2536650000)",
"versionType": "custom"
},
{
"lessThanOrEqual": "V1.16.18 (Build 18081617)",
"status": "affected",
"version": "IE-WL-BL-AP-CL-US (2536660000)",
"versionType": "custom"
},
{
"lessThanOrEqual": "V1.16.18 (Build 18081617)",
"status": "affected",
"version": "IE-WLT-BL-AP-CL-US (2536670000)",
"versionType": "custom"
}
]
},
{
"product": "IE-WL(T)-VL-AP-CL-XX",
"vendor": "Weidm\u00fcller",
"versions": [
{
"lessThanOrEqual": "V1.11.10 (Build 18122616)",
"status": "affected",
"version": "IE-WL-VL-AP-BR-CL-EU (2536680000)",
"versionType": "custom"
},
{
"lessThanOrEqual": "V1.11.10 (Build 18122616)",
"status": "affected",
"version": "IE-WLT-VL-AP-BR-CL-EU (2536690000)",
"versionType": "custom"
},
{
"lessThanOrEqual": "V1.11.10 (Build 18122616)",
"status": "affected",
"version": "IE-WL-VL-AP-BR-CL-US (2536700000)",
"versionType": "custom"
},
{
"lessThanOrEqual": "V1.11.10 (Build 18122616)",
"status": "affected",
"version": "IE-WLT-VL-AP-BR-CL-US (2536710000)",
"versionType": "custom"
}
]
}
],
"datePublic": "2021-06-23T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "In Weidmueller Industrial WLAN devices in multiple versions an exploitable use of hard-coded credentials vulnerability exists in multiple iw_* utilities. The device operating system contains an undocumented encryption password, allowing for the creation of custom diagnostic scripts. An attacker can send diagnostic scripts while authenticated as a low privilege user to trigger this vulnerability."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-798",
"description": "CWE-798 Use of Hard-coded Credentials",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-06-25T18:25:56.000Z",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://cert.vde.com/en-us/advisories/vde-2021-026"
}
],
"solutions": [
{
"lang": "en",
"value": "For IE-WL(T)-BL-AP-CL-XX versions V1.16.21 (Build 21010513) and greater are fixed.\nFor IE-WL(T)-VL-AP-CL-XX versions V1.11.13 (Build 21010513) and greater are fixed."
}
],
"source": {
"advisory": "VDE-2021-026",
"defect": [
"VDE-2021-026"
],
"discovery": "EXTERNAL"
},
"title": "WEIDMUELLER: WLAN devices affected by Hard-coded Credentials vulnerability",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "info@cert.vde.com",
"DATE_PUBLIC": "2021-06-23T10:00:00.000Z",
"ID": "CVE-2021-33531",
"STATE": "PUBLIC",
"TITLE": "WEIDMUELLER: WLAN devices affected by Hard-coded Credentials vulnerability"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "IE-WL(T)-BL-AP-CL-XX",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "IE-WL-BL-AP-CL-EU (2536600000)",
"version_value": "V1.16.18 (Build 18081617)"
},
{
"version_affected": "\u003c=",
"version_name": "IE-WLT-BL-AP-CL-EU (2536650000)",
"version_value": "V1.16.18 (Build 18081617)"
},
{
"version_affected": "\u003c=",
"version_name": "IE-WL-BL-AP-CL-US (2536660000)",
"version_value": "V1.16.18 (Build 18081617)"
},
{
"version_affected": "\u003c=",
"version_name": "IE-WLT-BL-AP-CL-US (2536670000)",
"version_value": "V1.16.18 (Build 18081617)"
}
]
}
},
{
"product_name": "IE-WL(T)-VL-AP-CL-XX",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "IE-WL-VL-AP-BR-CL-EU (2536680000)",
"version_value": "V1.11.10 (Build 18122616)"
},
{
"version_affected": "\u003c=",
"version_name": "IE-WLT-VL-AP-BR-CL-EU (2536690000)",
"version_value": "V1.11.10 (Build 18122616)"
},
{
"version_affected": "\u003c=",
"version_name": "IE-WL-VL-AP-BR-CL-US (2536700000)",
"version_value": "V1.11.10 (Build 18122616)"
},
{
"version_affected": "\u003c=",
"version_name": "IE-WLT-VL-AP-BR-CL-US (2536710000)",
"version_value": "V1.11.10 (Build 18122616)"
}
]
}
}
]
},
"vendor_name": "Weidm\u00fcller"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In Weidmueller Industrial WLAN devices in multiple versions an exploitable use of hard-coded credentials vulnerability exists in multiple iw_* utilities. The device operating system contains an undocumented encryption password, allowing for the creation of custom diagnostic scripts. An attacker can send diagnostic scripts while authenticated as a low privilege user to trigger this vulnerability."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-798 Use of Hard-coded Credentials"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://cert.vde.com/en-us/advisories/vde-2021-026",
"refsource": "CONFIRM",
"url": "https://cert.vde.com/en-us/advisories/vde-2021-026"
}
]
},
"solution": [
{
"lang": "en",
"value": "For IE-WL(T)-BL-AP-CL-XX versions V1.16.21 (Build 21010513) and greater are fixed.\nFor IE-WL(T)-VL-AP-CL-XX versions V1.11.13 (Build 21010513) and greater are fixed."
}
],
"source": {
"advisory": "VDE-2021-026",
"defect": [
"VDE-2021-026"
],
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2021-33531",
"datePublished": "2021-06-25T18:25:56.622Z",
"dateReserved": "2021-05-24T00:00:00.000Z",
"dateUpdated": "2024-09-16T23:16:36.995Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-33529 (GCVE-0-2021-33529)
Vulnerability from cvelistv5 – Published: 2021-06-25 18:25 – Updated: 2024-09-16 17:52- CWE-798 - Use of Hard-coded Credentials
| URL | Tags |
|---|---|
| https://cert.vde.com/en-us/advisories/vde-2021-026 | x_refsource_CONFIRM |
| Vendor | Product | Version | |
|---|---|---|---|
| Weidmüller | IE-WL(T)-BL-AP-CL-XX |
Affected:
IE-WL-BL-AP-CL-EU (2536600000) , ≤ V1.16.18 (Build 18081617)
(custom)
Affected: IE-WLT-BL-AP-CL-EU (2536650000) , ≤ V1.16.18 (Build 18081617) (custom) Affected: IE-WL-BL-AP-CL-US (2536660000) , ≤ V1.16.18 (Build 18081617) (custom) Affected: IE-WLT-BL-AP-CL-US (2536670000) , ≤ V1.16.18 (Build 18081617) (custom) |
|
| Weidmüller | IE-WL(T)-VL-AP-CL-XX |
Affected:
IE-WL-VL-AP-BR-CL-EU (2536680000) , ≤ V1.11.10 (Build 18122616)
(custom)
Affected: IE-WLT-VL-AP-BR-CL-EU (2536690000) , ≤ V1.11.10 (Build 18122616) (custom) Affected: IE-WL-VL-AP-BR-CL-US (2536700000) , ≤ V1.11.10 (Build 18122616) (custom) Affected: IE-WLT-VL-AP-BR-CL-US (2536710000) , ≤ V1.11.10 (Build 18122616) (custom) |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T23:50:43.021Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://cert.vde.com/en-us/advisories/vde-2021-026"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "IE-WL(T)-BL-AP-CL-XX",
"vendor": "Weidm\u00fcller",
"versions": [
{
"lessThanOrEqual": "V1.16.18 (Build 18081617)",
"status": "affected",
"version": "IE-WL-BL-AP-CL-EU (2536600000)",
"versionType": "custom"
},
{
"lessThanOrEqual": "V1.16.18 (Build 18081617)",
"status": "affected",
"version": "IE-WLT-BL-AP-CL-EU (2536650000)",
"versionType": "custom"
},
{
"lessThanOrEqual": "V1.16.18 (Build 18081617)",
"status": "affected",
"version": "IE-WL-BL-AP-CL-US (2536660000)",
"versionType": "custom"
},
{
"lessThanOrEqual": "V1.16.18 (Build 18081617)",
"status": "affected",
"version": "IE-WLT-BL-AP-CL-US (2536670000)",
"versionType": "custom"
}
]
},
{
"product": "IE-WL(T)-VL-AP-CL-XX",
"vendor": "Weidm\u00fcller",
"versions": [
{
"lessThanOrEqual": "V1.11.10 (Build 18122616)",
"status": "affected",
"version": "IE-WL-VL-AP-BR-CL-EU (2536680000)",
"versionType": "custom"
},
{
"lessThanOrEqual": "V1.11.10 (Build 18122616)",
"status": "affected",
"version": "IE-WLT-VL-AP-BR-CL-EU (2536690000)",
"versionType": "custom"
},
{
"lessThanOrEqual": "V1.11.10 (Build 18122616)",
"status": "affected",
"version": "IE-WL-VL-AP-BR-CL-US (2536700000)",
"versionType": "custom"
},
{
"lessThanOrEqual": "V1.11.10 (Build 18122616)",
"status": "affected",
"version": "IE-WLT-VL-AP-BR-CL-US (2536710000)",
"versionType": "custom"
}
]
}
],
"datePublic": "2021-06-23T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "In Weidmueller Industrial WLAN devices in multiple versions the usage of hard-coded cryptographic keys within the service agent binary allows for the decryption of captured traffic across the network from or to the device."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-798",
"description": "CWE-798 Use of Hard-coded Credentials",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-06-25T18:25:54.000Z",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://cert.vde.com/en-us/advisories/vde-2021-026"
}
],
"solutions": [
{
"lang": "en",
"value": "For IE-WL(T)-BL-AP-CL-XX versions V1.16.21 (Build 21010513) and greater are fixed.\nFor IE-WL(T)-VL-AP-CL-XX versions V1.11.13 (Build 21010513) and greater are fixed."
}
],
"source": {
"advisory": "VDE-2021-026",
"defect": [
"VDE-2021-026"
],
"discovery": "EXTERNAL"
},
"title": "WEIDMUELLER: WLAN devices affected by Hard-coded Credentials vulnerability",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "info@cert.vde.com",
"DATE_PUBLIC": "2021-06-23T10:00:00.000Z",
"ID": "CVE-2021-33529",
"STATE": "PUBLIC",
"TITLE": "WEIDMUELLER: WLAN devices affected by Hard-coded Credentials vulnerability"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "IE-WL(T)-BL-AP-CL-XX",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "IE-WL-BL-AP-CL-EU (2536600000)",
"version_value": "V1.16.18 (Build 18081617)"
},
{
"version_affected": "\u003c=",
"version_name": "IE-WLT-BL-AP-CL-EU (2536650000)",
"version_value": "V1.16.18 (Build 18081617)"
},
{
"version_affected": "\u003c=",
"version_name": "IE-WL-BL-AP-CL-US (2536660000)",
"version_value": "V1.16.18 (Build 18081617)"
},
{
"version_affected": "\u003c=",
"version_name": "IE-WLT-BL-AP-CL-US (2536670000)",
"version_value": "V1.16.18 (Build 18081617)"
}
]
}
},
{
"product_name": "IE-WL(T)-VL-AP-CL-XX",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "IE-WL-VL-AP-BR-CL-EU (2536680000)",
"version_value": "V1.11.10 (Build 18122616)"
},
{
"version_affected": "\u003c=",
"version_name": "IE-WLT-VL-AP-BR-CL-EU (2536690000)",
"version_value": "V1.11.10 (Build 18122616)"
},
{
"version_affected": "\u003c=",
"version_name": "IE-WL-VL-AP-BR-CL-US (2536700000)",
"version_value": "V1.11.10 (Build 18122616)"
},
{
"version_affected": "\u003c=",
"version_name": "IE-WLT-VL-AP-BR-CL-US (2536710000)",
"version_value": "V1.11.10 (Build 18122616)"
}
]
}
}
]
},
"vendor_name": "Weidm\u00fcller"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In Weidmueller Industrial WLAN devices in multiple versions the usage of hard-coded cryptographic keys within the service agent binary allows for the decryption of captured traffic across the network from or to the device."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-798 Use of Hard-coded Credentials"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://cert.vde.com/en-us/advisories/vde-2021-026",
"refsource": "CONFIRM",
"url": "https://cert.vde.com/en-us/advisories/vde-2021-026"
}
]
},
"solution": [
{
"lang": "en",
"value": "For IE-WL(T)-BL-AP-CL-XX versions V1.16.21 (Build 21010513) and greater are fixed.\nFor IE-WL(T)-VL-AP-CL-XX versions V1.11.13 (Build 21010513) and greater are fixed."
}
],
"source": {
"advisory": "VDE-2021-026",
"defect": [
"VDE-2021-026"
],
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2021-33529",
"datePublished": "2021-06-25T18:25:54.843Z",
"dateReserved": "2021-05-24T00:00:00.000Z",
"dateUpdated": "2024-09-16T17:52:51.853Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-33016 (GCVE-0-2021-33016)
Vulnerability from cvelistv5 – Published: 2022-05-26 16:32 – Updated: 2025-04-16 16:18- CWE-798 - Use of Hard-coded Credentials
| URL | Tags |
|---|---|
| https://www.cisa.gov/uscert/ics/advisories/icsa-2… | x_refsource_MISC |
| Vendor | Product | Version | |
|---|---|---|---|
| KUKA | KR C4 |
Affected:
All , < v8.7
(custom)
|
|
| KUKA | KSS (KUKA.SystemSoftware) |
Affected:
All
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T23:42:19.033Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-208-01"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2021-33016",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-16T15:54:39.412909Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-04-16T16:18:06.589Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "KR C4",
"vendor": "KUKA",
"versions": [
{
"lessThan": "v8.7",
"status": "affected",
"version": "All",
"versionType": "custom"
}
]
},
{
"product": "KSS (KUKA.SystemSoftware)",
"vendor": "KUKA",
"versions": [
{
"status": "affected",
"version": "All"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Chen Jie from NSFOCUS reported these vulnerabilities to CISA."
}
],
"descriptions": [
{
"lang": "en",
"value": "An attacker can gain full access (read/write/delete) to sensitive folders due to hard-coded credentials on KUKA KR C4 control software for versions prior to 8.7 or any product running KSS."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-798",
"description": "CWE-798 Use of Hard-coded Credentials",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-05-26T16:32:36.000Z",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-208-01"
}
],
"source": {
"advisory": "ICSA-21-208-01",
"discovery": "UNKNOWN"
},
"title": "KUKA KR C4 - Use of Hard-Coded Credentials",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"ID": "CVE-2021-33016",
"STATE": "PUBLIC",
"TITLE": "KUKA KR C4 - Use of Hard-Coded Credentials"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "KR C4",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "All",
"version_value": "v8.7"
}
]
}
},
{
"product_name": "KSS (KUKA.SystemSoftware)",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All"
}
]
}
}
]
},
"vendor_name": "KUKA"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Chen Jie from NSFOCUS reported these vulnerabilities to CISA."
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An attacker can gain full access (read/write/delete) to sensitive folders due to hard-coded credentials on KUKA KR C4 control software for versions prior to 8.7 or any product running KSS."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-798 Use of Hard-coded Credentials"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-208-01",
"refsource": "MISC",
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-208-01"
}
]
},
"source": {
"advisory": "ICSA-21-208-01",
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2021-33016",
"datePublished": "2022-05-26T16:32:36.000Z",
"dateReserved": "2021-05-13T00:00:00.000Z",
"dateUpdated": "2025-04-16T16:18:06.589Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-33014 (GCVE-0-2021-33014)
Vulnerability from cvelistv5 – Published: 2022-05-26 16:33 – Updated: 2025-04-16 17:53- CWE-798 - Use of Hard-coded Credentials
| URL | Tags |
|---|---|
| https://www.cisa.gov/uscert/ics/advisories/icsa-2… | x_refsource_MISC |
| Vendor | Product | Version | |
|---|---|---|---|
| KUKA | KR C4 |
Affected:
All , < v8.7
(custom)
|
|
| KUKA | KSS (KUKA.SystemSoftware) |
Affected:
All
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T23:42:20.055Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-208-01"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2021-33014",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-16T17:28:52.289380Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-04-16T17:53:08.881Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "KR C4",
"vendor": "KUKA",
"versions": [
{
"lessThan": "v8.7",
"status": "affected",
"version": "All",
"versionType": "custom"
}
]
},
{
"product": "KSS (KUKA.SystemSoftware)",
"vendor": "KUKA",
"versions": [
{
"status": "affected",
"version": "All"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Chen Jie from NSFOCUS reported these vulnerabilities to CISA."
}
],
"descriptions": [
{
"lang": "en",
"value": "An attacker can gain VxWorks Shell after login due to hard-coded credentials on a KUKA KR C4 control software for versions prior to 8.7 or any product running KSS."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-798",
"description": "CWE-798 Use of Hard-coded Credentials",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-05-26T16:33:08.000Z",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-208-01"
}
],
"source": {
"advisory": "ICSA-21-208-01",
"discovery": "UNKNOWN"
},
"title": "KUKA KR C4 - Use of Hard-Coded Credentials",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"ID": "CVE-2021-33014",
"STATE": "PUBLIC",
"TITLE": "KUKA KR C4 - Use of Hard-Coded Credentials"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "KR C4",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "All",
"version_value": "v8.7"
}
]
}
},
{
"product_name": "KSS (KUKA.SystemSoftware)",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All"
}
]
}
}
]
},
"vendor_name": "KUKA"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Chen Jie from NSFOCUS reported these vulnerabilities to CISA."
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An attacker can gain VxWorks Shell after login due to hard-coded credentials on a KUKA KR C4 control software for versions prior to 8.7 or any product running KSS."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-798 Use of Hard-coded Credentials"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-208-01",
"refsource": "MISC",
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-208-01"
}
]
},
"source": {
"advisory": "ICSA-21-208-01",
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2021-33014",
"datePublished": "2022-05-26T16:33:08.000Z",
"dateReserved": "2021-05-13T00:00:00.000Z",
"dateUpdated": "2025-04-16T17:53:08.881Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-32993 (GCVE-0-2021-32993)
Vulnerability from cvelistv5 – Published: 2021-12-27 18:48 – Updated: 2024-09-17 03:52- CWE-798 - Use of Hard-coded Credentials
| URL | Tags |
|---|---|
| https://www.cisa.gov/uscert/ics/advisories/icsma-… | x_refsource_MISC |
| Vendor | Product | Version | |
|---|---|---|---|
| Philips | IntelliBridge EC 40 Hub |
Affected:
unspecified , ≤ C.00.04
(custom)
|
|
| Philips | IntelliBridge EC 80 Hub |
Affected:
unspecified , ≤ C.00.04
(custom)
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T23:42:19.050Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsma-21-322-01"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "IntelliBridge EC 40 Hub",
"vendor": "Philips",
"versions": [
{
"lessThanOrEqual": "C.00.04",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "IntelliBridge EC 80 Hub",
"vendor": "Philips",
"versions": [
{
"lessThanOrEqual": "C.00.04",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Younes Dragoni, Andrea Palanca and Ivan Speziale of Nozomi Networks"
}
],
"datePublic": "2021-11-18T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "IntelliBridge EC 40 and 60 Hub (C.00.04 and prior) contains hard-coded credentials, such as a password or a cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-798",
"description": "CWE-798 Use of Hard-coded Credentials",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-12-27T18:48:20.000Z",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsma-21-322-01"
}
],
"source": {
"advisory": "ICSMA-21-322-01",
"discovery": "UNKNOWN"
},
"title": "Philips IntelliBridge EC 40 and EC 80 Hub Use of Hard-coded Credentials",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"DATE_PUBLIC": "2021-11-18T15:34:00.000Z",
"ID": "CVE-2021-32993",
"STATE": "PUBLIC",
"TITLE": "Philips IntelliBridge EC 40 and EC 80 Hub Use of Hard-coded Credentials"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "IntelliBridge EC 40 Hub",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_value": "C.00.04"
}
]
}
},
{
"product_name": "IntelliBridge EC 80 Hub",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_value": "C.00.04"
}
]
}
}
]
},
"vendor_name": "Philips"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Younes Dragoni, Andrea Palanca and Ivan Speziale of Nozomi Networks"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "IntelliBridge EC 40 and 60 Hub (C.00.04 and prior) contains hard-coded credentials, such as a password or a cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-798 Use of Hard-coded Credentials"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.cisa.gov/uscert/ics/advisories/icsma-21-322-01",
"refsource": "MISC",
"url": "https://www.cisa.gov/uscert/ics/advisories/icsma-21-322-01"
}
]
},
"solution": [
{
"lang": "en"
}
],
"source": {
"advisory": "ICSMA-21-322-01",
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2021-32993",
"datePublished": "2021-12-27T18:48:20.675Z",
"dateReserved": "2021-05-13T00:00:00.000Z",
"dateUpdated": "2024-09-17T03:52:56.730Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-32535 (GCVE-0-2021-32535)
Vulnerability from cvelistv5 – Published: 2021-07-07 14:12 – Updated: 2024-09-16 16:38- CWE-798 - Use of Hard-coded Credentials
| URL | Tags |
|---|---|
| https://www.twcert.org.tw/tw/cp-132-4892-768d9-1.html | x_refsource_MISC |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T23:25:29.785Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.twcert.org.tw/tw/cp-132-4892-768d9-1.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "SANOS",
"vendor": "QSAN",
"versions": [
{
"lessThanOrEqual": "2.0.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
],
"datePublic": "2021-07-07T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The vulnerability of hard-coded default credentials in QSAN SANOS allows unauthenticated remote attackers to obtain administrator\u2019s permission and execute arbitrary functions. The referred vulnerability has been solved with the updated version of QSAN SANOS v2.1.0."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-798",
"description": "CWE-798 Use of Hard-coded Credentials",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-07-22T10:33:05.000Z",
"orgId": "cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e",
"shortName": "twcert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.twcert.org.tw/tw/cp-132-4892-768d9-1.html"
}
],
"solutions": [
{
"lang": "en",
"value": "QSAN SANOS v2.0.1"
}
],
"source": {
"advisory": "TVN-202104046",
"discovery": "EXTERNAL"
},
"title": "QSAN SANOS - Use of Hard-coded Credentials",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"AKA": "TWCERT/CC",
"ASSIGNER": "cve@cert.org.tw",
"DATE_PUBLIC": "2021-07-07T12:12:00.000Z",
"ID": "CVE-2021-32535",
"STATE": "PUBLIC",
"TITLE": "QSAN SANOS - Use of Hard-coded Credentials"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "SANOS",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_value": "2.0.0"
}
]
}
}
]
},
"vendor_name": "QSAN"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The vulnerability of hard-coded default credentials in QSAN SANOS allows unauthenticated remote attackers to obtain administrator\u2019s permission and execute arbitrary functions. The referred vulnerability has been solved with the updated version of QSAN SANOS v2.1.0."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-798 Use of Hard-coded Credentials"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.twcert.org.tw/tw/cp-132-4892-768d9-1.html",
"refsource": "MISC",
"url": "https://www.twcert.org.tw/tw/cp-132-4892-768d9-1.html"
}
]
},
"solution": [
{
"lang": "en",
"value": "QSAN SANOS v2.0.1"
}
],
"source": {
"advisory": "TVN-202104046",
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e",
"assignerShortName": "twcert",
"cveId": "CVE-2021-32535",
"datePublished": "2021-07-07T14:12:25.490Z",
"dateReserved": "2021-05-10T00:00:00.000Z",
"dateUpdated": "2024-09-16T16:38:41.859Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-32454 (GCVE-0-2021-32454)
Vulnerability from cvelistv5 – Published: 2021-05-17 17:36 – Updated: 2024-09-16 20:26- CWE-798 - Use of Hard-coded Credentials
| URL | Tags |
|---|---|
| https://www.incibe-cert.es/en/early-warning/ics-a… | x_refsource_CONFIRM |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T23:17:29.537Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.incibe-cert.es/en/early-warning/ics-advisories/sitel-capprx-hardcoded-credentials"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "CAP/PRX",
"vendor": "SITEL",
"versions": [
{
"status": "affected",
"version": "5.2.01"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Industrial Cybersecurity team of S21sec, special mention to Aar\u00f3n Flecha Men\u00e9ndez and Luis Mart\u00edn Liras, as an independent researcher."
}
],
"datePublic": "2021-05-13T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "SITEL CAP/PRX firmware version 5.2.01 makes use of a hardcoded password. An attacker with access to the device could modify these credentials, leaving the administrators of the device without access."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-798",
"description": "CWE-798 Use of Hard-coded Credentials",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-05-17T17:36:30.000Z",
"orgId": "0cbda920-cd7f-484a-8e76-bf7f4b7f4516",
"shortName": "INCIBE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.incibe-cert.es/en/early-warning/ics-advisories/sitel-capprx-hardcoded-credentials"
}
],
"solutions": [
{
"lang": "en",
"value": "The fix for this vulnerability is available as of version 1.2 of the CAP-PRX-NG platform."
}
],
"source": {
"advisory": "INCIBE-2021-0179",
"discovery": "EXTERNAL"
},
"title": "SITEL CAP/PRX hardcoded credentials",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve-coordination@incibe.es",
"DATE_PUBLIC": "2021-05-13T10:00:00.000Z",
"ID": "CVE-2021-32454",
"STATE": "PUBLIC",
"TITLE": "SITEL CAP/PRX hardcoded credentials"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "CAP/PRX",
"version": {
"version_data": [
{
"version_affected": "=",
"version_name": "5.2.01",
"version_value": "5.2.01"
}
]
}
}
]
},
"vendor_name": "SITEL"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Industrial Cybersecurity team of S21sec, special mention to Aar\u00f3n Flecha Men\u00e9ndez and Luis Mart\u00edn Liras, as an independent researcher."
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "SITEL CAP/PRX firmware version 5.2.01 makes use of a hardcoded password. An attacker with access to the device could modify these credentials, leaving the administrators of the device without access."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-798 Use of Hard-coded Credentials"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.incibe-cert.es/en/early-warning/ics-advisories/sitel-capprx-hardcoded-credentials",
"refsource": "CONFIRM",
"url": "https://www.incibe-cert.es/en/early-warning/ics-advisories/sitel-capprx-hardcoded-credentials"
}
]
},
"solution": [
{
"lang": "en",
"value": "The fix for this vulnerability is available as of version 1.2 of the CAP-PRX-NG platform."
}
],
"source": {
"advisory": "INCIBE-2021-0179",
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "0cbda920-cd7f-484a-8e76-bf7f4b7f4516",
"assignerShortName": "INCIBE",
"cveId": "CVE-2021-32454",
"datePublished": "2021-05-17T17:36:30.615Z",
"dateReserved": "2021-05-07T00:00:00.000Z",
"dateUpdated": "2024-09-16T20:26:17.258Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-31579 (GCVE-0-2021-31579)
Vulnerability from cvelistv5 – Published: 2021-07-22 18:27 – Updated: 2024-08-03 23:03- CWE-798 - Use of Hard-coded Credentials
| URL | Tags |
|---|---|
| https://www.rapid7.com/blog/post/2021/06/08/akkad… | x_refsource_MISC |
| Vendor | Product | Version | |
|---|---|---|---|
| Akkadian | Provisioning Manager Engine (PME) |
Affected:
4.50.18 , ≤ 4.50.18
(custom)
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T23:03:33.409Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.rapid7.com/blog/post/2021/06/08/akkadian-provisioning-manager-multiple-vulnerabilities-disclosure/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Provisioning Manager Engine (PME)",
"vendor": "Akkadian",
"versions": [
{
"lessThanOrEqual": "4.50.18",
"status": "affected",
"version": "4.50.18",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Cale Black, Ryan Villarreal, and Jonathan Peterson of Rapid7"
}
],
"descriptions": [
{
"lang": "en",
"value": "Akkadian Provisioning Manager Engine (PME) ships with a hard-coded credential, akkadianuser:haakkadianpassword. This issue was resolved in Akkadian OVA appliance version 3.0 (and later), Akkadian Provisioning Manager 5.0.2 (and later), and Akkadian Appliance Manager 3.3.0.314-4a349e0 (and later)."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-798",
"description": "CWE-798 Use of Hard-coded Credentials",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-07-22T18:27:17.000Z",
"orgId": "9974b330-7714-4307-a722-5648477acda7",
"shortName": "rapid7"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.rapid7.com/blog/post/2021/06/08/akkadian-provisioning-manager-multiple-vulnerabilities-disclosure/"
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Akkadian Provisioning Manager Engine (PME) Hard-Coded Credentials",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@rapid7.com",
"ID": "CVE-2021-31579",
"STATE": "PUBLIC",
"TITLE": "Akkadian Provisioning Manager Engine (PME) Hard-Coded Credentials"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Provisioning Manager Engine (PME)",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "4.50.18",
"version_value": "4.50.18"
}
]
}
}
]
},
"vendor_name": "Akkadian"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Cale Black, Ryan Villarreal, and Jonathan Peterson of Rapid7"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Akkadian Provisioning Manager Engine (PME) ships with a hard-coded credential, akkadianuser:haakkadianpassword. This issue was resolved in Akkadian OVA appliance version 3.0 (and later), Akkadian Provisioning Manager 5.0.2 (and later), and Akkadian Appliance Manager 3.3.0.314-4a349e0 (and later)."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-798 Use of Hard-coded Credentials"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.rapid7.com/blog/post/2021/06/08/akkadian-provisioning-manager-multiple-vulnerabilities-disclosure/",
"refsource": "MISC",
"url": "https://www.rapid7.com/blog/post/2021/06/08/akkadian-provisioning-manager-multiple-vulnerabilities-disclosure/"
}
]
},
"source": {
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "9974b330-7714-4307-a722-5648477acda7",
"assignerShortName": "rapid7",
"cveId": "CVE-2021-31579",
"datePublished": "2021-07-22T18:27:17.000Z",
"dateReserved": "2021-04-22T00:00:00.000Z",
"dateUpdated": "2024-08-03T23:03:33.409Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
Mitigation
- For outbound authentication: store passwords, keys, and other credentials outside of the code in a strongly-protected, encrypted configuration file or database that is protected from access by all outsiders, including other local users on the same system. Properly protect the key (CWE-320). If you cannot use encryption to protect the file, then make sure that the permissions are as restrictive as possible [REF-7].
- In Windows environments, the Encrypted File System (EFS) may provide some protection.
Mitigation
For inbound authentication: Rather than hard-code a default username and password, key, or other authentication credentials for first time logins, utilize a "first login" mode that requires the user to enter a unique strong password or key.
Mitigation
If the product must contain hard-coded credentials or they cannot be removed, perform access control checks and limit which entities can access the feature that requires the hard-coded credentials. For example, a feature might only be enabled through the system console instead of through a network connection.
Mitigation
- For inbound authentication using passwords: apply strong one-way hashes to passwords and store those hashes in a configuration file or database with appropriate access control. That way, theft of the file/database still requires the attacker to try to crack the password. When handling an incoming password during authentication, take the hash of the password and compare it to the saved hash.
- Use randomly assigned salts for each separate hash that is generated. This increases the amount of computation that an attacker needs to conduct a brute-force attack, possibly limiting the effectiveness of the rainbow table method.
Mitigation
- For front-end to back-end connections: Three solutions are possible, although none are complete.
- The first suggestion involves the use of generated passwords or keys that are changed automatically and must be entered at given time intervals by a system administrator. These passwords will be held in memory and only be valid for the time intervals.
- Next, the passwords or keys should be limited at the back end to only performing actions valid for the front end, as opposed to having full access.
- Finally, the messages sent should be tagged and checksummed with time sensitive values so as to prevent replay-style attacks.
CAPEC-191: Read Sensitive Constants Within an Executable
An adversary engages in activities to discover any sensitive constants present within the compiled code of an executable. These constants may include literal ASCII strings within the file itself, or possibly strings hard-coded into particular routines that can be revealed by code refactoring methods including static and dynamic analysis.
CAPEC-70: Try Common or Default Usernames and Passwords
An adversary may try certain common or default usernames and passwords to gain access into the system and perform unauthorized actions. An adversary may try an intelligent brute force using empty passwords, known vendor default credentials, as well as a dictionary of common usernames and passwords. Many vendor products come preconfigured with default (and thus well-known) usernames and passwords that should be deleted prior to usage in a production environment. It is a common mistake to forget to remove these default login credentials. Another problem is that users would pick very simple (common) passwords (e.g. "secret" or "password") that make it easier for the attacker to gain access to the system compared to using a brute force attack or even a dictionary attack using a full dictionary.