CVEs classified under CWE-916, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2020-14516 — CVSS 10.0 (critical): In Rockwell Automation FactoryTalk Services Platform Versions 6.10.00 and 6.11.00, there is an issue with the implementation of the SHA-256…
CVE-2026-30789 — CVSS 9.8 (critical): Use of Password Hash With Insufficient Computational Effort, Improper Restriction of Excessive Authentication Attempts vulnerability in…
CVE-2024-5743 — CVSS 9.8 (critical): An attacker could exploit the 'Use of Password Hash With Insufficient Computational Effort' vulnerability in EveHome Eve Play to execute…
CVE-2021-36767 — CVSS 9.8 (critical): In Digi RealPort through 4.10.490, authentication relies on a challenge-response mechanism that gives access to the server password, making…
CVE-2021-32519 — CVSS 9.8 (critical): Use of password hash with insufficient computational effort vulnerability in QSAN Storage Manager, XEVO, SANOS allows remote attackers to…
CVE-2019-17216 — CVSS 9.8 (critical): An issue was discovered on V-Zug Combi-Steam MSLQ devices before Ethernet R07 and before WLAN R05. Password authentication uses MD5 to hash…
CVE-2019-6563 — CVSS 9.8 (critical): Moxa IKS and EDS generate a predictable cookie calculated with an MD5 hash, allowing an attacker to capture the administrator's password…
CVE-2018-15680 — CVSS 9.8 (critical): An issue was discovered in BTITeam XBTIT 2.5.4. The hashed passwords stored in the xbtit_users table are stored as unsalted MD5 hashes…
CVE-2018-10618 — CVSS 9.8 (critical): Davolink DVW-3200N all version prior to Version 1.00.06. The device generates a weak password hash that is easily cracked, allowing a…
CVE-2005-0408 — CVSS 9.8 (critical): CitrusDB 0.3.6 and earlier generates easily predictable MD5 hashes of the user name for the id_hash cookie, which allows remote attackers…
CVE-2001-0967 — CVSS 9.8 (critical): Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt() function, which makes…
CVE-2019-19735 — CVSS 9.1 (critical): class.userpeer.php in MFScripts YetiShare 3.5.2 through 4.5.3 uses an insecure method of creating password reset hashes (based only on…
CVE-2026-55069 — CVSS 8.7 (high): Kestra is an open-source, event-driven orchestration platform. Prior to 1.3.24, this vulnerability exists in the BasicAuth authentication…
CVE-2023-5846 — CVSS 8.3 (high): Franklin Fueling System TS-550 versions prior to 1.9.23.8960 are vulnerable to attackers decoding admin credentials, resulting in…
CVE-2022-36071 — CVSS 8.3 (high): SFTPGo is configurable SFTP server with optional HTTP/S, FTP/S and WebDAV support. SFTPGo WebAdmin and WebClient support login using TOTP…
CVE-2021-32997 — CVSS 8.2 (high): The affected Baker Hughes Bentley Nevada products (3500 System 1 6.x, Part No. 3060/00 versions 6.98 and prior, 3500 System 1, Part No…
CVE-2022-1235 — CVSS 8.2 (high): Weak secrethash can be brute-forced in GitHub repository livehelperchat/livehelperchat prior to 3.96.
CVE-2024-3183 — CVSS 8.1 (high): A vulnerability was found in FreeIPA in a way when a Kerberos TGS-REQ is encrypted using the client’s session key. This key is different…
CVE-2024-25607 — CVSS 8.1 (high): The default password hashing algorithm (PBKDF2-HMAC-SHA1) in Liferay Portal 7.2.0 through 7.4.3.15, and older unsupported versions, and…
CVE-2023-33243 — CVSS 8.1 (high): RedTeam Pentesting discovered that the web interface of STARFACE as well as its REST API allows authentication using the SHA512 hash of the…
CVE-2020-14389 — CVSS 8.1 (high): It was found that Keycloak before version 12.0.0 would permit a user with only view-profile role to manage the resources in the new account…
CVE-2020-14512 — CVSS 8.1 (high): GateManager versions prior to 9.2c, The affected product uses a weak hash type, which may allow an attacker to view user passwords.
CVE-2025-2265 — CVSS 7.8 (high): The password of a web user in "Sante PACS Server.exe" is zero-padded to 0x2000 bytes, SHA1-hashed, base64-encoded, and stored in the USER…
CVE-2020-12069 — CVSS 7.8 (high): In CODESYS V3 products in all versions prior V3.5.16.0 containing the CmpUserMgr, the CODESYS Control runtime system stores the online…
CVE-2019-20466 — CVSS 7.8 (high): An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. A local attacker with the "default" account is…
CVE-2018-9233 — CVSS 7.8 (high): Sophos Endpoint Protection 10.7 uses an unsalted SHA-1 hash for password storage in %PROGRAMDATA%\Sophos\Sophos Anti-Virus\Config\machine.xm…
CVE-2025-3937 — CVSS 7.7 (high): Use of Password Hash With Insufficient Computational Effort vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium…
CVE-2023-0567 — CVSS 7.7 (high): In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, password_verify() function may accept some invalid Blowfish hashes…
CVE-2024-7701 — CVSS 7.5 (high): Use of Password Hash With Insufficient Computational Effort vulnerability in percona percona-toolkit allows Encryption Brute Forcing.This…
CVE-2024-23091 — CVSS 7.5 (high): Weak password hashing using MD5 in funzioni.php in HotelDruid before 1.32 allows an attacker to obtain plaintext passwords from hash values.
CVE-2024-24553 — CVSS 7.5 (high): Bludit uses the SHA-1 hashing algorithm to compute password hashes. Thus, attackers could determine cleartext passwords with brute-force…
CVE-2022-3010 — CVSS 7.5 (high): The Priva TopControl Suite contains predictable credentials for the SSH service, based on the Serial number. Which makes it possible for an…
CVE-2023-31412 — CVSS 7.5 (high): The LMS5xx uses weak hash generation methods, resulting in the creation of insecure hashs. If an attacker manages to retrieve the hash, it…
CVE-2023-27580 — CVSS 7.5 (high): CodeIgniter Shield provides authentication and authorization for the CodeIgniter 4 PHP framework. An improper implementation was found in…
CVE-2022-47732 — CVSS 7.5 (high): In Yeastar N412 and N824 Configuration Panel 42.x and 45.x, an unauthenticated attacker can create backup file and download it, revealing…
CVE-2021-38979 — CVSS 7.5 (high): IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 uses a one-way cryptographic hash against an input that should not be reversible…
CVE-2021-22774 — CVSS 7.5 (high): A CWE-759: Use of a One-Way Hash without a Salt vulnerability exists in EVlink City (EVC1S22P4 / EVC1S7P4 all versions prior to R8…
CVE-2020-25754 — CVSS 7.5 (high): An issue was discovered on Enphase Envoy R3.x and D4.x devices. There is a custom PAM module for user authentication that circumvents…
CVE-2021-33563 — CVSS 7.5 (high): Koel before 5.1.4 lacks login throttling, lacks a password strength policy, and shows whether a failed login attempt had a valid username…
CVE-2020-28873 — CVSS 7.5 (high): Fluxbb 1.5.11 is affected by a denial of service (DoS) vulnerability by sending an extremely long password via the user login form. When a…
CVE-2017-18917 — CVSS 7.5 (high): An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. Weak hashing was used for e-mail invitations, OAuth, and…
CVE-2014-2560 — CVSS 7.5 (high): The PhonerLite phone before 2.15 provides hashed credentials in a response to an invalid authentication challenge, which makes it easier…
CVE-2009-5139 — CVSS 7.5 (high): The SIP implementation on the Gizmo5 software phone provides hashed credentials in a response to an invalid authentication challenge, which…
CVE-2019-7649 — CVSS 7.5 (high): global.encryptPassword in bootstrap/global.js in CMSWing 1.3.7 relies on multiple MD5 operations for password hashing.
CVE-2019-3907 — CVSS 7.5 (high): Premisys Identicard version 3.1.190 stores user credentials and other sensitive information with a known weak encryption method (MD5 hash…
CVE-2008-1526 — CVSS 7.5 (high): ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40(PE9) and 3.40(AGD.2) through 3.40(AHQ.3), do not use a…
CVE-2002-1657 — CVSS 7.5 (high): PostgreSQL uses the username for a salt when generating passwords, which makes it easier for remote attackers to guess passwords via a…