CWE-255: CWE-255

Arista MOS software stores user enable passwords in clear text, allowing unprivileged users to gain complete system access. This affects Arista 7130 p...

CVE-2021-21505 is a critical vulnerability in Dell EMC Integrated System for Microsoft Azure Stack Hub where an undocumented default iDRAC account exi...

This vulnerability in Zytec Dalian Zhuoyun Technology Central Authentication Service 3 allows attackers to bypass authentication using hard-coded cred...

CVE-2020-8968 allows a local attacker to retrieve Parallels RAS profile passwords in clear text by uploading a previously stored encrypted file. This ...

This vulnerability allows attackers with local access to exploit a hard-coded password in the Root Account Handler component of Tomofun Furbo pet came...

This vulnerability in Tenda RP3 Pro routers allows local attackers to exploit a hard-coded password in the firmware update mechanism. Attackers with p...

This vulnerability in ZKTeco BioTime allows attackers to remotely access and manipulate credential storage parameters, leading to unprotected storage ...

This vulnerability in Intelbras UnniTI 24.07.11 allows remote attackers to access plaintext admin credentials stored in the /xml/sistema/usuarios.xml ...

This vulnerability in Intelbras ICIP 2.0.20 allows remote attackers to access plaintext admin credentials stored in the /xml/sistema/acessodeusuario.x...

This vulnerability in SGAI Space1 NAS devices allows remote attackers to retrieve stored credentials via unprotected API endpoints. It affects users o...

This vulnerability in TaleLin Lin-CMS allows attackers to manipulate username/password arguments in test configuration files, potentially exposing cre...