CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2020-15322
https://notcve.org/view.php?id=CVE-2020-15322
Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has the wbboEZ4BN3ssxAfM hardcoded password for the debian-sys-maint account. Zyxel CloudCNM SecuManager versiones 3.1.0 y 3.1.1, posee la contraseña embebida wbboEZ4BN3ssxAfM para la cuenta debian-sys-maint • https://pierrekim.github.io/blog/2020-03-09-zyxel-secumanager-0day-vulnerabilities.html https://www.zyxel.com/support/vulnerabilities-of-CloudCNM-SecuManager.shtml • CWE-798: Use of Hard-coded Credentials •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2020-15321
https://notcve.org/view.php?id=CVE-2020-15321
Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has the axzyxel password for the livedbuser account. Zyxel CloudCNM SecuManager versiones 3.1.0 y 3.1.1, posee la contraseña axzyxel para la cuenta livedbuser • https://pierrekim.github.io/blog/2020-03-09-zyxel-secumanager-0day-vulnerabilities.html https://www.zyxel.com/support/vulnerabilities-of-CloudCNM-SecuManager.shtml • CWE-798: Use of Hard-coded Credentials •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2020-15320
https://notcve.org/view.php?id=CVE-2020-15320
Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has the axiros password for the root account. Zyxel CloudCNM SecuManager versiones 3.1.0 y 3.1.1, posee la contraseña axiros para la cuenta root • https://pierrekim.github.io/blog/2020-03-09-zyxel-secumanager-0day-vulnerabilities.html https://www.zyxel.com/support/vulnerabilities-of-CloudCNM-SecuManager.shtml • CWE-798: Use of Hard-coded Credentials •
CVSS: 5.9EPSS: 0%CPEs: 2EXPL: 1CVE-2020-15319
https://notcve.org/view.php?id=CVE-2020-15319
Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has a hardcoded RSA SSH key for the root account within the /opt/mysql chroot directory tree. Zyxel CloudCNM SecuManager versiones 3.1.0 y 3.1.1, posee una clave SSH RSA embebida para la cuenta root dentro del árbol de directorio chroot /opt/mysql • https://pierrekim.github.io/blog/2020-03-09-zyxel-secumanager-0day-vulnerabilities.html https://www.zyxel.com/support/vulnerabilities-of-CloudCNM-SecuManager.shtml • CWE-798: Use of Hard-coded Credentials •
CVSS: 5.9EPSS: 0%CPEs: 2EXPL: 1CVE-2020-15318
https://notcve.org/view.php?id=CVE-2020-15318
Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has a hardcoded DSA SSH key for the root account within the /opt/mysql chroot directory tree. Zyxel CloudCNM SecuManager versiones 3.1.0 y 3.1.1, posee una clave SSH DSA embebida para la cuenta root dentro del árbol de directorio chroot /opt/mysql • https://pierrekim.github.io/blog/2020-03-09-zyxel-secumanager-0day-vulnerabilities.html https://www.zyxel.com/support/vulnerabilities-of-CloudCNM-SecuManager.shtml • CWE-798: Use of Hard-coded Credentials •