目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1325

100%
请我们喝杯咖啡

CWE-798 使用硬编码的凭证 类漏洞列表 595

CWE-798 使用硬编码的凭证 类弱点 595 条 CVE 漏洞汇总,含 AI 中文分析。

CWE-798指硬编码凭据漏洞,即软件将密码或密钥直接写入代码。攻击者可通过逆向工程提取这些固定凭据,从而绕过认证机制获取未授权访问权限。为避免此类风险,开发者应严禁在代码中硬编码敏感信息,转而采用环境变量、密钥管理系统或配置数据库等动态方式存储凭据,确保凭据与代码分离,提升系统安全性。

MITRE CWE 官方描述
CWE:CWE-798 使用硬编码凭证 (Use of Hard-coded Credentials) 英文:该产品包含硬编码凭证 (hard-coded credentials),例如密码 (password) 或加密密钥 (cryptographic key)。 主要有两种变体: 入站 (Inbound):该产品包含一种身份验证机制,将输入的凭证 (input credentials) 与一组硬编码凭证 (hard-coded set of credentials) 进行比对。在此变体中,会创建一个默认的管理员账户 (default administration account),并将一个简单的密码 (simple password) 硬编码到产品中并与该账户关联。此硬编码密码 (hard-coded password) 在产品的每次安装中都是相同的,并且通常无法由系统管理员 (system administrators) 在不手动修改程序或修补产品的情况下更改或禁用。管理员也难以检测到此问题。 出站 (Outbound):该产品连接到另一个系统或组件,并包含用于连接该组件的硬编码凭证 (hard-coded credentials)。此变体适用于与后端服务 (back-end service) 进行身份验证的前端系统 (front-end systems)。后端服务 (back-end service) 可能需要一个容易被发现的固定密码 (fixed password)。程序员可能只是将这些后端凭证 (back-end credentials) 硬编码到前端产品 (front-end product) 中。
常见影响 (2)
Access ControlBypass Protection Mechanism
If hard-coded passwords are used, it is almost certain that malicious users will gain access to the account in question. Any user of the product that hard-codes passwords may be able to extract the password. Client-side systems with hard-coded passwords pose even more of a threat, since the extracti…
Integrity, Confidentiality, Availability, Access Control, OtherRead Application Data, Gain Privileges or Assume Identity, Execute Unauthorized Code or Commands, Other
This weakness can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or even execute arbitrary code. If the password is ever discovered or published (a common occurrence on the Internet), then anybody with knowledge of thi…
缓解措施 (5)
Architecture and DesignFor outbound authentication: store passwords, keys, and other credentials outside of the code in a strongly-protected, encrypted configuration file or database that is protected from access by all outsiders, including other local users on the same system. Properly protect the key (CWE-320). If you cannot use encryption to protect the file, then make sure that the permissions are as restrictive as …
Architecture and DesignFor inbound authentication: Rather than hard-code a default username and password, key, or other authentication credentials for first time logins, utilize a "first login" mode that requires the user to enter a unique strong password or key.
Architecture and DesignIf the product must contain hard-coded credentials or they cannot be removed, perform access control checks and limit which entities can access the feature that requires the hard-coded credentials. For example, a feature might only be enabled through the system console instead of through a network connection.
Architecture and DesignFor inbound authentication using passwords: apply strong one-way hashes to passwords and store those hashes in a configuration file or database with appropriate access control. That way, theft of the file/database still requires the attacker to try to crack the password. When handling an incoming password during authentication, take the hash of the password and compare it to the saved hash. Use ra…
Architecture and DesignFor front-end to back-end connections: Three solutions are possible, although none are complete. The first suggestion involves the use of generated passwords or keys that are changed automatically and must be entered at given time intervals by a system administrator. These passwords will be held in memory and only be valid for the time intervals. Next, the passwords or keys should be limited at th…
代码示例 (2)
The following code uses a hard-coded password to connect to a database:
... DriverManager.getConnection(url, "scott", "tiger"); ...
Bad · Java
javap -c ConnMngr.class 22: ldc #36; //String jdbc:mysql://ixne.com/rxsql 24: ldc #38; //String scott 26: ldc #17; //String tiger
Attack
The following code is an example of an internal hard-coded password in the back-end:
int VerifyAdmin(char *password) { if (strcmp(password, "Mew!")) { printf("Incorrect Password!\n"); return(0) } printf("Entering Diagnostic Mode...\n"); return(1); }
Bad · C
int VerifyAdmin(String password) { if (!password.equals("Mew!")) { return(0) } //Diagnostic Mode return(1); }
Bad · Java
CVE ID标题CVSS风险等级Published
CVE-2026-47846 Bitnami Cassandra默认超级用户漏洞 — bitnami/cassandra 9.8 Critical2026-06-18
CVE-2026-47847 Bitnami MariaDB Galera 硬编码凭证漏洞 — bitnami/mariadb-galera 5.3 Medium2026-06-18
CVE-2025-10560 Worksnaps客户端应用二进制文件中硬编码的云端凭据导致生产环境云资源暴露漏洞 — Worksnaps.net Worksnaps--2026-06-18
CVE-2026-5667 多种家用电器信息泄露、篡改或拒绝服务漏洞 — Room Air Conditioners (for Japan) MSZ-BKR2223-W--2026-06-17
CVE-2026-22312 Radiflow iSAP Smart Collector 信任管理问题漏洞 — iSAP Smart Collector 8.6 High2026-06-16
CVE-2026-50083 Aqara IAM/SSO Gateway 信任管理问题漏洞 — Aquara IAM/SSO Gateway 9.1 Critical2026-06-12
CVE-2026-10557 Yarbo Mobile Application 信任管理问题漏洞 — Yarbo Android/IOS mobile application 9.8 Critical2026-06-12
CVE-2026-11849 IEI Integration Corp iRM-TSi410X 信任管理问题漏洞 — iRM-TSi410X 9.8 Critical2026-06-12
CVE-2026-11414 Altium Enterprise Server 安全漏洞 — Altium Enterprise Server--2026-06-05
CVE-2025-71317 RIELLO UPS NetMan 信任管理问题漏洞 — NetMan 204 9.8 Critical2026-06-05
CVE-2026-21404 Navtor NavBox 信任管理问题漏洞 — NavBox 6.3 Medium2026-06-04
CVE-2026-50213 Acer M6E 安全漏洞 — Connect M6E 5G Portable WiFi Router--2026-06-04
CVE-2026-49204 Acer M6E 安全漏洞 — Connect M6E 5G Portable WiFi Router--2026-06-04
CVE-2019-25722 Dräger SC Monitoring devices 信任管理问题漏洞 — SC 6002XL 7.6 High2026-06-02
CVE-2026-42251 KAMSOFT KS-SOMED 信任管理问题漏洞 — KS-SOMED--2026-06-01
CVE-2026-25600 TRAC PDBM 安全漏洞 — PDBM 6.4 Medium2026-06-01
CVE-2026-44825 Apache Solr 安全漏洞 — Apache Solr 8.1 High2026-06-01
CVE-2026-42929 Danelec Marine Danelec MacGregor Voyage Data Recorder 信任管理问题漏洞 — MacGregor Voyage Data Recorder (VDR) G4e 8.3 High2026-05-29
CVE-2026-7786 USR-W610 信任管理问题漏洞 — USR-W610 RS232/485 to Wi-Fi/Ethernet Converter 9.8 Critical2026-05-29
CVE-2026-45631 Dokploy 信任管理问题漏洞 — dokploy 10.0 Critical2026-05-29
CVE-2026-46376 FreePBX 信任管理问题漏洞 — security-reporting--2026-05-29
CVE-2026-49201 Acer Wave 7 router 安全漏洞 — Wave 7 router--2026-05-29
CVE-2026-45039 rustfs 安全漏洞 — rustfs 9.8 Critical2026-05-28
CVE-2026-24444 SDMC NE6037 信任管理问题漏洞 — NE6037 9.8 Critical2026-05-28
CVE-2026-5065 IBM Controller 信任管理问题漏洞 — Controller 8.8 High2026-05-27
CVE-2026-48245 tickets 信任管理问题漏洞 — Tickets 5.3 Medium2026-05-21
CVE-2026-48244 tickets 信任管理问题漏洞 — Tickets 5.3 Medium2026-05-21
CVE-2026-48243 tickets 信任管理问题漏洞 — Tickets 5.3 Medium2026-05-21
CVE-2026-48242 tickets 信任管理问题漏洞 — Tickets 8.1 High2026-05-21
CVE-2026-48241 tickets 信任管理问题漏洞 — Tickets 8.1 High2026-05-21

CWE-798(使用硬编码的凭证) 是常见的弱点类别,本平台收录该类弱点关联的 595 条 CVE 漏洞。