CWE-1392: Use of Default Credentials
low-riskThe product uses default credentials (such as passwords or cryptographic keys) for potentially critical functionality.
Abstraction: Base
Common Consequences
Authentication
→
Gain Privileges or Assume Identity
Real-World Examples (10)
| CVE | CVSS | EPSS | KEV |
|---|---|---|---|
| CVE-2024-12856 | 7.2 | 73.9% | — |
| CVE-2024-4007 | 8.8 | 9.5% | — |
| CVE-2024-6788 | 8.6 | 4.5% | — |
| CVE-2023-30603 | 9.8 | 0.7% | — |
| CVE-2023-30801 | 9.8 | 0.6% | — |
| CVE-2025-5124 | 8.1 | 0.6% | — |
| CVE-2024-12013 | 7.6 | 0.4% | — |
| CVE-2025-2398 | 7.2 | 0.4% | — |
| CVE-2024-7746 | 9.8 | 0.3% | — |
| CVE-2024-12286 | 9.8 | 0.3% | — |
0
/ 100
low-risk
Active Threat
0/50 · Minimal
Exploit Availability
0/50 · Minimal