Login Sign Up

CWE-1393: CWE-1393

17
Total CVEs
11
Critical
2
High
8.9
Avg CVSS

Yearly Trend

2026
3
2025
7
2024
4
2023
3

Top Affected Vendors

1 Dell 2
2 Tenda 1
3 Vivotek 1
4 Snipeitapp 1
5 Liferay 1
6 70mai 1
7 Pega 1
8 Netis Systems 1
9 Iroadau 1
10 Abb 1

All CWE-1393 CVEs (17)

CVE-2026-2635
9.8

CVE-2026-2635 is an authentication bypass vulnerability in MLflow that allows remote attackers to gain administrative access without credentials. The ...

Feb 20, 2026
CVE-2026-24429
9.8

This vulnerability allows attackers to use hardcoded default credentials to gain administrative access to Tenda W30E V2 routers. Anyone using affected...

Jan 26, 2026
CVE-2025-66050
9.8

Vivotek IP7137 cameras have a critical authentication bypass vulnerability where administrator accounts have no default password requirement. Attacker...

Jan 9, 2026
CVE-2025-8077
9.8

NeuVector container security platform versions up to 5.4.5 use a hardcoded default password for the built-in admin account. If not changed after deplo...

Sep 17, 2025
CVE-2025-27690
9.8

Dell PowerScale OneFS versions 9.5.0.0 through 9.10.1.0 contain a default password vulnerability that allows unauthenticated remote attackers to take ...

Apr 10, 2025
CVE-2023-45249
9.8

CVE-2023-45249 allows remote attackers to execute arbitrary commands on affected Acronis Cyber Infrastructure systems due to the use of default passwo...

Jul 24, 2024
CVE-2024-30802
9.8

This vulnerability in Vehicle Management System 7.31.0.3_20230412 allows attackers to escalate privileges through the login.html component, potentiall...

May 14, 2024
CVE-2024-29666
9.8

CVE-2024-29666 is an insecure permissions vulnerability in the Vehicle Monitoring platform system CMSV6 that allows remote attackers to escalate privi...

Mar 25, 2024
CVE-2023-32090
9.8

Pega Platform versions 6.1 through 7.3.1 contain default operator credentials that could allow attackers to gain unauthorized access. This affects all...

Aug 7, 2023
CVE-2022-4126
9.6

CVE-2022-4126 is a vulnerability in ABB RCCMD software on Windows, Linux, and macOS, where the system uses default or common passwords, allowing attac...

Mar 27, 2023
CVE-2023-25131
9.4

This vulnerability allows remote attackers to log into PowerPanel Business management servers using the default 'admin' password that is never changed...

Apr 24, 2023
CVE-2025-2766
8.8

This vulnerability allows network-adjacent attackers to bypass authentication on 70mai A510 devices using default passwords. Attackers can gain root a...

Jun 6, 2025
CVE-2024-49559
8.8

Dell SmartFabric OS10 Software contains a default password vulnerability that allows low-privileged attackers with remote access to gain unauthorized ...

Mar 17, 2025
CVE-2024-48987
6.6

Snipe-IT versions before 7.0.10 contain a remote code execution vulnerability via cookie serialization when an attacker obtains the APP_KEY. This allo...

Oct 11, 2024
CVE-2025-43799
6.5

This vulnerability allows remote users to access and edit content via APIs before changing their initial password in affected Liferay versions. It aff...

Sep 15, 2025
CVE-2025-2921
6.4

A critical vulnerability in Netis WF-2404 routers allows attackers to exploit a default password issue via manipulation of the /etc/passwd file using ...

Mar 28, 2025
CVE-2025-2347
6.3

The IROAD Dash Cam FX2 uses a default password 'qwertyuiop' during device registration, allowing attackers on the same local network to bypass authent...

Mar 16, 2025

About CWE-1393 (CWE-1393)

Our database tracks 17 CVEs classified as CWE-1393, with 11 rated critical and 2 rated high severity. The average CVSS score for CWE-1393 vulnerabilities is 8.9.

External reference: View CWE-1393 on MITRE CWE →

Monitor CWE-1393 Vulnerabilities

Get alerted when new CWE-1393 CVEs affect your infrastructure.

Start Monitoring Free