Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-287 (认证机制不恰当) — Vulnerability Class 1187

1187 vulnerabilities classified as CWE-287 (认证机制不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-3632 Red Hat Single Sign-On 授权问题漏洞 — keycloak 8.1 -2022-08-26
CVE-2021-3827 Red Hat Keycloak 授权问题漏洞 — keycloak 6.8 -2022-08-23
CVE-2022-2336 Softing Secure Integration Server Improper Authentication — Secure Integration Server 9.8 Critical2022-08-17
CVE-2022-2662 Sequi PortBloque S Improper Authentication — PortBloque S 9.6 Critical2022-08-16
CVE-2022-37397 The software is vulnerable when using LDAP-based authentication in YCQL with Microsoft’s Active Directory — Yugabyte DB 8.3 High2022-08-12
CVE-2022-38180 JetBrains Ktor framework 授权问题漏洞 — Ktor 5.3 Medium2022-08-12
CVE-2022-2765 SourceCodester Company Website CMS settings improper authentication — Company Website CMS 6.3 Medium2022-08-11
CVE-2022-29083 Dell BIOS 授权问题漏洞 — CPG BIOS 6.8 Medium2022-08-09
CVE-2022-33732 SAMSUNG Mobile devices 安全漏洞 — Samsung Mobile Devices 6.2 Medium2022-08-05
CVE-2022-36296 WordPress ActiveDEMAND plugin <= 0.2.27 - Broken Authentication vulnerability — ActiveDEMAND 6.5 Medium2022-08-05
CVE-2022-2664 Private Cloud Management Platform POST Request global_config_query improper authentication — Private Cloud Management Platform 7.3 High2022-08-05
CVE-2022-35925 Missing rate limit in Authentication in bookwyrm — bookwyrm 5.3 Medium2022-08-02
CVE-2022-35629 Velociraptor Client ID Spoofing — Velociraptor 4.3 -2022-07-29
CVE-2016-0796 WordPress Plugin mb.miniAudioPlayer 安全漏洞 — WordPress Plugin mb.miniAudioPlayer-an 7.5 -2022-07-28
CVE-2022-2553 booth 授权问题漏洞 — Booth 6.5 -2022-07-28
CVE-2022-28666 WordPress Custom Product Tabs for WooCommerce plugin <= 1.7.7 - Broken Access Control vulnerability — Custom Product Tabs for WooCommerce (WordPress plugin) 5.3 Medium2022-07-21
CVE-2022-31164 Tovy before v0.7.51 vulnerable to users logging in as and impersonating other users — tovy 7.5 High2022-07-21
CVE-2022-2141 ICSA-22-200-01 MiCODUS MV720 GPS tracker Improper Authentication — MV720 9.8 Critical2022-07-20
CVE-2022-2133 OAuth Single Sign On < 6.22.6 - Authentication Bypass — OAuth Single Sign On – SSO (OAuth Client) 5.3 -2022-07-17
CVE-2017-20133 Itech Job Portal Script admin improper authentication — Job Portal Script 7.3 High2022-07-16
CVE-2022-33689 SAMSUNG Mobile devices TelephonyUI 安全漏洞 — Samsung Mobile Devices 6.2 Medium2022-07-11
CVE-2022-30755 SAMSUNG Mobile devices App lock 授权问题漏洞 — Samsung Mobile Devices 7.3 High2022-07-11
CVE-2015-5298 Jenkins Plugin Google Login 授权问题漏洞 — Jenkins Google Login Plugin 9.4 -2022-07-07
CVE-2022-31131 Ownership check missing when updating or deleting mail attachments in Nextcloud mail — security-advisories 5.4 Medium2022-07-06
CVE-2022-31125 Authentication Bypass in Roxy-wi — roxy-wi 10.0 Critical2022-07-06
CVE-2022-2197 Exemys RME1 — RME1-AI firmware 9.8 Critical2022-06-30
CVE-2021-26638 Xi Smarthome wallpad authentication bypass vulnerability — S&D smarthome (smartcare) 7.3 High2022-06-22
CVE-2021-26637 SiHAS Improper Authentication vulnerability — SiHAS firmware 8.8 High2022-06-22
CVE-2022-31083 Authentication bypass in Parse Server Apple Game Center auth adapter — parse-server 8.6 High2022-06-17
CVE-2020-36548 GE Voluson S8 Service Browser users.cgi improper authentication — Voluson S8 5.9 Medium2022-06-17

Vulnerabilities classified as CWE-287 (认证机制不恰当) represent 1187 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.