Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-287 (认证机制不恰当) — Vulnerability Class 1187

1187 vulnerabilities classified as CWE-287 (认证机制不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-21484 SAMSUNG Mobile devices 授权问题漏洞 — Samsung Mobile Devices 5.1 Medium2023-05-04
CVE-2022-30995 Acronis Cyber Backup和Acronis Cyber Protect 授权问题漏洞 — Acronis Cyber Protect 15 7.5 -2023-05-03
CVE-2023-30869 WordPress Easy Digital Downloads Plugin 3.1-3.1.1.4.1 is vulnerable to Privilege Escalation — Easy Digital Downloads 9.8 Critical2023-05-02
CVE-2023-1477 HYPR 授权问题漏洞 — Keycloak Authenticator Extension 7.2 High2023-04-28
CVE-2023-1778 Default Credential Vulnerability in GajShield Data Security Firewall — Data Security Firewall 10.0 Critical2023-04-27
CVE-2023-30845 ESPv2 vulnerable to JWT authentication bypass via `X-HTTP-Method-Override` header — esp-v2 8.2 High2023-04-26
CVE-2022-45456 Acronis Agent 安全漏洞 — Acronis Agent 7.5 -2023-04-26
CVE-2023-0209 NVIDIA DGX-1 授权问题漏洞 — NVIDIA DGX servers 8.2 High2023-04-22
CVE-2023-25601 Apache DolphinScheduler 3.0.0 to 3.1.1 python gateway has improper authentication — Apache DolphinScheduler 9.1 -2023-04-20
CVE-2023-27351 PaperCut NG 授权问题漏洞 — NG 9.8 -2023-04-20
CVE-2023-25556 Schneider Electric StruxureWare Data Center Expert 授权问题漏洞 — Merten INSTABUS Tastermodul 1fach System M 625199 8.3 High2023-04-18
CVE-2023-24831 Apache IoTDB grafana-connector Login Bypass Vulnerability — Apache IoTDB 8.8 -2023-04-17
CVE-2023-28963 Junos OS: User-controlled input vulnerability in J-Web — Junos OS 5.3 Medium2023-04-17
CVE-2023-28962 Junos OS: Unauthenticated access vulnerability in J-Web — Junos OS 5.3 Medium2023-04-17
CVE-2023-1617 Improper Authentication Mechanism in B&R VC4 Visualization — B&R VC4 9.8 Critical2023-04-14
CVE-2023-28121 WordPress plugin WooCommerce Payments 授权问题漏洞 — WooCommerce Payments WordPress Plugin 9.8 -2023-04-12
CVE-2023-23761 Improper authentication vulnerability in GitHub Enterprise Server leading to modification of secret gists — Enterprise Server 7.7 High2023-04-07
CVE-2023-1784 jeecg-boot API Documentation improper authentication — jeecg-boot 5.3 Medium2023-03-31
CVE-2023-28646 App lockout in nextcloud Android app can be bypassed via thirdparty apps — security-advisories 4.4 Medium2023-03-30
CVE-2022-43620 D-Link DIR-1935 授权问题漏洞 — DIR-1935 8.8 -2023-03-29
CVE-2023-1464 SourceCodester Medicine Tracker System improper authentication — Medicine Tracker System 7.3 High2023-03-17
CVE-2023-1460 SourceCodester Online Pizza Ordering System Password Change improper authentication — Online Pizza Ordering System 6.5 Medium2023-03-17
CVE-2023-21455 SAMSUNG Mobile Devices 安全漏洞 — Samsung Mobile Devices 5.9 Medium2023-03-16
CVE-2023-21460 SAMSUNG Mobile Devices 授权问题漏洞 — Samsung Mobile Devices 4.4 Medium2023-03-16
CVE-2022-46773 IBM Robotic Process Automation security bypass — Robotic Process Automation 4.3 Medium2023-03-15
CVE-2022-46774 IBM Manage Application security bypass — Manage Application 5.4 Medium2023-03-15
CVE-2023-23857 Improper Access Control in SAP NetWeaver AS for Java — NetWeaver AS for Java 9.9 Critical2023-03-14
CVE-2023-27582 Full authentication bypass if SASL authorization username is specified — maddy 9.1 Critical2023-03-13
CVE-2022-44574 Avalanche 授权问题漏洞 — Ivanti Avalanche 7.5 -2023-03-10
CVE-2023-27482 Home Assistant 授权问题漏洞 — core 10.0 Critical2023-03-08

Vulnerabilities classified as CWE-287 (认证机制不恰当) represent 1187 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.