CWE-1394: CWE-1394
Yearly Trend
Top Affected Vendors
All CWE-1394 CVEs (9)
Sprecher Automations SPRECON-E devices use default cryptographic keys that allow unauthorized remote attackers to read, modify, and write projects and...
Dec 2, 2025CVE-2024-48956 is an unauthenticated remote code execution vulnerability in Serviceware Processes. Attackers can execute arbitrary code on affected sy...
Dec 9, 2024Sprecher Automations SPRECON-E series uses default cryptographic keys that allow unprivileged remote attackers to decrypt all encrypted communications...
Dec 2, 2025This vulnerability in datahub-helm Kubernetes charts allows attackers to forge personal access tokens using a default static signing key. It affects D...
Mar 20, 2024RUCKUS SmartZone network controllers before version 6.1.2p3 Refresh Build contain a hardcoded SSH private key for a root-equivalent account, allowing ...
Aug 4, 2025CVE-2023-6451 is an authentication bypass vulnerability in AlayaCare's Procura Portal where attackers can forge authentication cookies using a publicl...
Feb 16, 2024This vulnerability in macrozheng mall's JWT Token Handler allows attackers to forge authentication tokens by exploiting the use of a default cryptogra...
Nov 22, 2024This vulnerability in rachelos WeRSS we-mp-rss allows attackers to bypass authentication by manipulating the SECRET_KEY argument, causing the system t...
Feb 9, 2026This vulnerability allows attackers to decrypt LDAP credentials stored in FortiOS configuration files due to a static encryption key shared across all...
Feb 5, 2026About CWE-1394 (CWE-1394)
Our database tracks 9 CVEs classified as CWE-1394, with 5 rated critical and 1 rated high severity. The average CVSS score for CWE-1394 vulnerabilities is 7.5.
External reference: View CWE-1394 on MITRE CWE →
Monitor CWE-1394 Vulnerabilities
Get alerted when new CWE-1394 CVEs affect your infrastructure.
Start Monitoring Free