CVE-2021-39434

HIGH Year: 2021
CVSS v3 Score
7.5
High
Weakness Type
CWE-521
View all →

Vulnerability Description

A default username and password for an administrator account was discovered in ZKTeco ZKTime 10.0 through 11.1.0, builds 20180901, 20190510.1, 20200309.3, 20200930, 20201231, and 20210220.

Related Vulnerabilities

CVE-2016-11069

HIGH
CVSS:7.5(High)

An issue was discovered in Mattermost Server before 3.2.0. It mishandles brute-force attempts at password change.

CWE-5212016

CVE-2017-1597

HIGH
CVSS:7.5(High)

IBM Security Guardium 10.0, 10.0.1, 10.1, 10.1.2, 10.1.3, 10.1.4, and 10.5 Database Activity Monitor does not require that users should have strong passwords by default, which makes it easier for atta...

CWE-5212017

CVE-2017-9818

HIGH
CVSS:7.5(High)

The National Payments Corporation of India BHIM application 1.3 for Android relies on a four-digit passcode, which makes it easier for attackers to obtain access.

CWE-5212017

CVE-2018-15766

HIGH
CVSS:7.5(High)

On install, Dell Encryption versions prior 10.0.1 and Dell Endpoint Security Suite Enterprise versions prior 2.0.1 will overwrite and manually set the "Minimum Password Length" group policy object to ...

CWE-5212018

CVE-2018-1680

HIGH
CVSS:7.5(High)

IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. I...

CWE-5212018