BaseDraftTop 25 #22

CWE-798Use of Hard-coded Credentials

Category: auth

Description

The product contains hard-coded credentials, such as a password or cryptographic key.

Common consequences· 2

  • Access Control — Bypass Protection Mechanism
  • Integrity / Confidentiality / Availability / Access Control / Other — Read Application Data, Gain Privileges or Assume Identity, Execute Unauthorized Code or Commands, Other

Potential mitigations· 5

  • [Architecture and Design]
  • [Architecture and Design]For inbound authentication: Rather than hard-code a default username and password, key, or other authentication credentials for first time logins, utilize a "first login" mode that requires the user to enter a unique strong password or key.
  • [Architecture and Design]If the product must contain hard-coded credentials or they cannot be removed, perform access control checks and limit which entities can access the feature that requires the hard-coded credentials. For example, a feature might only be enabled through the system console instead of through a network connection.
  • [Architecture and Design]
  • [Architecture and Design]

Related CAPEC attack patterns· 2

CAPEC-191CAPEC-70

References

  1. https://cwe.mitre.org/data/definitions/798.html

Exploits (incoming)2

TypeTargetConfidenceTier
AttackPatternRead Sensitive Constants Within an Executablecapec-191100%live
AttackPatternTry Common or Default Usernames and Passwordscapec-70100%live

Compliance frameworks addressing this (incoming)30

TypeTargetConfidenceTier
ComplianceControliso27001-a.8.5100%live
ComplianceControldora-art10100%live
ComplianceControlai_act-art15100%live
ComplianceControldora-art6100%live
ComplianceControliso27001-a.8.16100%live
ComplianceControltiber_eu-testing100%live
ComplianceControlcis_v8-6100%live
ComplianceControlcis_v8-4100%live
ComplianceControlnis2-art21g100%live
ComplianceControlnis2-art21j100%live
ComplianceControliso27001-a.8.2100%live
ComplianceControldora-art24100%live
ComplianceControldora-art11100%live
ComplianceControlpci_dss_v4-r12100%live
ComplianceControlai_act-art9100%live
ComplianceControldora-art25100%live
ComplianceControlgdpr-art32100%live
ComplianceControldora-art5100%live
ComplianceControlnist_csf-rc100%live
ComplianceControlowasp_llm_top10-llm04100%live
ComplianceControlpci_dss_v4-r5100%live
ComplianceControliso27001-a.8.21100%live
ComplianceControltiber_eu-closure100%live
ComplianceControlnist_csf-rs100%live
ComplianceControldora-art12100%live
ComplianceControlpci_dss_v4-r7100%live
ComplianceControlowasp_llm_top10-llm07100%live
ComplianceControlgdpr-art34100%live
ComplianceControldora-art17100%live
ComplianceControlpci_dss_v4-r8100%live

(incoming)118

TypeTargetConfidenceTier
VulnerabilityCVE-2025-10639cve-2025-106390%live
VulnerabilityCVE-2025-10681cve-2025-106810%live
VulnerabilityCVE-2025-10850cve-2025-108500%live
VulnerabilityCVE-2025-11126cve-2025-111260%live
VulnerabilityCVE-2025-1143cve-2025-11430%live
VulnerabilityCVE-2025-11643cve-2025-116430%live
VulnerabilityCVE-2025-1242cve-2025-12420%live
VulnerabilityCVE-2025-1393cve-2025-13930%live
VulnerabilityCVE-2025-14096cve-2025-140960%live
VulnerabilityCVE-2025-14115cve-2025-141150%live
VulnerabilityCVE-2025-14126cve-2025-141260%live
VulnerabilityGladinet CentreStack and Triofox Hard Coded Cryptographic Vulnerabilitycve-2025-146110%live
VulnerabilityCVE-2025-14923cve-2025-149230%live
VulnerabilityCVE-2025-15107cve-2025-151070%live
VulnerabilityCVE-2025-20188cve-2025-201880%live
VulnerabilityCVE-2025-20309cve-2025-203090%live
VulnerabilityCVE-2025-2322cve-2025-23220%live
VulnerabilityCVE-2025-2538cve-2025-25380%live
VulnerabilityCVE-2025-25570cve-2025-255700%live
VulnerabilityCVE-2025-26410cve-2025-264100%live
VulnerabilityCVE-2025-27255cve-2025-272550%live
VulnerabilityCVE-2025-27643cve-2025-276430%live
VulnerabilityCVE-2025-2765cve-2025-27650%live
VulnerabilityCVE-2025-28230cve-2025-282300%live
VulnerabilityCVE-2025-28388cve-2025-283880%live
VulnerabilityCVE-2025-29268cve-2025-292680%live
VulnerabilityCVE-2025-30113cve-2025-301130%live
VulnerabilityCVE-2025-30122cve-2025-301220%live
VulnerabilityCVE-2025-30123cve-2025-301230%live
VulnerabilityCVE-2025-30125cve-2025-301250%live

Showing top 30 of 118 by confidence. Click any target to see the full neighbourhood.

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Use of Hard-coded Password
CWE
Use of Weak Credentials
CWE
Use of Hard-coded Cryptographic Key
CWE
Insufficiently Protected Credentials
CWE
Weak Authentication
CWE
Use of Default Credentials
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.