Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-1392 — Vulnerability Class 77

77 vulnerabilities classified as CWE-1392. AI Chinese analysis included.

CWE-1392 represents a critical security weakness where software relies on hardcoded, default credentials for authentication or cryptographic operations. Attackers typically exploit this vulnerability by identifying these known, static passwords or keys, often sourced from public documentation, vendor manuals, or reverse-engineered firmware. This allows unauthorized individuals to bypass access controls and gain privileged system access without needing to crack complex passwords. To mitigate this risk, developers must enforce strict credential management policies that mandate the generation of unique, strong passwords during initial deployment or first boot. Implementing mandatory password change prompts, utilizing secure key generation algorithms, and removing any hardcoded secrets from source code are essential practices. By ensuring that every instance of the software possesses distinct, unpredictable credentials, organizations significantly reduce the attack surface and prevent widespread compromise due to predictable authentication mechanisms.

MITRE CWE Description
The product uses default credentials (such as passwords or cryptographic keys) for potentially critical functionality. It is common practice for products to be designed to use default keys, passwords, or other mechanisms for authentication. The rationale is to simplify the manufacturing process or the system administrator's task of installation and deployment into an enterprise. However, if admins do not change the defaults, it is easier for attackers to bypass authentication quickly across multiple organizations.
Common Consequences (1)
AuthenticationGain Privileges or Assume Identity
Mitigations (3)
RequirementsProhibit use of default, hard-coded, or other values that do not vary for each installation of the product - especially for separate organizations.
Effectiveness: High
Architecture and DesignForce the administrator to change the credential upon installation.
Effectiveness: High
Installation, OperationThe product administrator could change the defaults upon installation or during operation.
Effectiveness: Moderate
Examples (1)
In 2022, the OT:ICEFALL study examined products by 10 different Operational Technology (OT) vendors. The researchers reported 56 vulnerabilities and said that the products were "insecure by design" [REF-1283]. If exploited, these vulnerabilities often allowed adversaries to change how the products operated, ranging from denial of service to changing the code that the products executed. Since these…
CVE IDTitleCVSSSeverityPublished
CVE-2025-55740 Default Credentials in nginx-defender Configuration Files — nginx-defender 6.5 Medium2025-08-19
CVE-2025-2184 Cortex XDR Broker VM: Secrets Shared Across Multiple Broker VM Images — Cortex XDR Broker VM 7.4AIHighAI2025-08-13
CVE-2025-8731 TRENDnet TI-G160i/TI-PG102i/TPL-430AP SSH Service default credentials — TI-G160i 9.8 Critical2025-08-08
CVE-2025-8530 elunez eladmin Druid application-prod.yml default credentials — eladmin 5.3 Medium2025-08-04
CVE-2025-29629 Gardyn 4 安全漏洞 — Home Kit Firmware 9.1 Critical2025-07-25
CVE-2025-54137 NodeJS version of the HAX CMS application is distributed with Default Secrets — issues 7.3 High2025-07-22
CVE-2025-7907 yangzongzhuan RuoYi Druid application-druid.yml default credentials — RuoYi 4.3 Medium2025-07-20
CVE-2025-1711 CVE-2025-1711 — Endress+Hauser MEAC300-FNADE4 4.3 Medium2025-07-03
CVE-2025-6951 SAFECAM X300 FTP Service default credentials — X300 4.3 Medium2025-07-01
CVE-2025-6529 70mai M300 Telnet Service default credentials — M300 8.8 High2025-06-23
CVE-2025-5124 Sony SNC-M1 Administrative Interface default credentials — SNC-M1 8.1 High2025-05-24
CVE-2025-1531 Authentication credentials leakage vulnerability in Hitachi Ops Center Analyzer viewpoint OVF — Hitachi Ops Center Analyzer viewpoint 6.5 Medium2025-05-16
CVE-2025-22460 Ivanti Cloud Services Application 安全漏洞 — CSA (Cloud Services Appliance) 7.8 High2025-05-13
CVE-2024-46899 Authentication credentials leakage vulnerability in Hitachi Ops Center Common Services within Hitachi Ops Center Analyzer viewpoint OVF — Hitachi Ops Center Common Services 7.1 High2025-04-22
CVE-2025-2398 China Mobile P22g-CIac CLI su Command default credentials — P22g-CIac 7.2 High2025-03-17
CVE-2025-2341 IROAD Dash Cam X5 SSID default credentials — Dash Cam X5 3.1 Low2025-03-16
CVE-2025-2119 Thinkware Car Dashcam F800 Pro Device Registration default credentials — Car Dashcam F800 Pro 2.0 Low2025-03-09
CVE-2024-13893 Shared credentials in Smartwares cameras — CIP-37210AT 4.6 -2025-03-06
CVE-2024-12013 Nozomi Networks TCP/IP Gateway 安全漏洞 — 130.8005 7.6 High2025-02-13
CVE-2024-54015 Siemens SIPROTEC 5 安全漏洞 — SIPROTEC 5 6MD84 (CP300) 7.5 High2025-02-11
CVE-2025-1160 SourceCodester Employee Management System index.php default credentials — Employee Management System 7.3 High2025-02-10
CVE-2025-23012 Fedora Repository fedoraIntCallUser default credentials — Fedora Repository 7.5 High2025-01-23
CVE-2025-0482 Fanli2012 native-php-cms user_recoverpwd.php default credentials — native-php-cms 7.3 High2025-01-15
CVE-2024-12902 Global Wisdom Software ANCHOR - Undocumented Privileged Account — ANCHOR 8.4 High2024-12-23
CVE-2024-10476 BD多款产品 安全漏洞 — BD BACTEC™ Blood Culture System 8.0 High2024-12-17
CVE-2024-12286 MOBATIME Network Master Clock has a use of default credentials vulnerability — Network Master Clock - DTS 4801 9.8 Critical2024-12-10
CVE-2024-45068 Authentication credentials leakage vulnerability in Hitachi Ops Center Common Services within Hitachi Ops Center OVA — Hitachi Ops Center Common Services 7.1 High2024-12-03
CVE-2024-6245 Default Credentials in ssh service for SmartPlay in Maruti Suzuki — SmartPlay 7.4 High2024-10-28
CVE-2024-39747 IBM Sterling Connect:Direct Web Services information disclosure — Sterling Connect:Direct Web Services 8.1 High2024-08-31
CVE-2024-39584 Dell Client Platform 安全漏洞 — Dell Client Platform BIOS 8.2 High2024-08-28

Vulnerabilities classified as CWE-1392 represent 77 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.