Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-287 (认证机制不恰当) — Vulnerability Class 1187

1187 vulnerabilities classified as CWE-287 (认证机制不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2018-25043 uTorrent PRNG improper authentication — uTorrent 5.0 Medium2022-06-17
CVE-2022-20798 Cisco Email Security Appliance and Cisco Secure Email and Web Manager External Authentication Bypass Vulnerability — Cisco Email Security Appliance (ESA) 9.8 Critical2022-06-15
CVE-2022-20733 Cisco Identity Services Engine Authentication Bypass Vulnerability — Cisco Identity Services Engine Software 5.3 Medium2022-06-15
CVE-2022-30749 Samsung mobile 授权问题漏洞 — Smart Things 3.3 Low2022-06-07
CVE-2020-36533 Klapp App JSON Web Token improper authentication — App 3.7 Low2022-06-03
CVE-2022-30238 Schneider Electric Wiser Smart 授权问题漏洞 — Wiser Smart 8.3 High2022-06-02
CVE-2022-31013 Authentication bypass in Vartalap chat-server — chat-server 9.1 Critical2022-05-31
CVE-2022-31011 TiDB authentication bypass vulnerability — tidb 7.8 High2022-05-31
CVE-2022-24422 DELL iDRAC9 授权问题漏洞 — Integrated Dell Remote Access Controller 9 9.6 Critical2022-05-26
CVE-2022-22576 curl 访问控制错误漏洞 — https://github.com/curl/curl 8.1 -2022-05-26
CVE-2021-4230 Airfield Online MySQL Backup improper authentication — Airfield Online 3.7 Low2022-05-24
CVE-2013-10004 Telecommunication Software SAMwin Contact Center Suite Password SAMwinLIBVB.dll passwordScramble improper authentication — SAMwin Contact Center Suite 6.5 Medium2022-05-24
CVE-2022-29237 Limited Authentication Bypass for Media Files in Opencast — opencast 5.4 Medium2022-05-24
CVE-2022-0910 Zyxel USG/ZyWALL 授权问题漏洞 — USG/ZyWALL series firmware 6.5 Medium2022-05-24
CVE-2022-1349 WPQA < 5.2 - Subscriber+ Arbitrary Profile Picture Deletion via IDOR — WPQA Builder Plugin 6.5 -2022-05-16
CVE-2022-29883 Siemens SICAM 访问控制错误漏洞 — SICAM T 5.3 Medium2022-05-10
CVE-2019-12254 TECSON/GOK: Improper Authentication and Access Control on multiple devices — e-litro net 9.8 Critical2022-05-06
CVE-2021-26253 Bypass of Splunk Enterprise's implementation of DUO MFA — Splunk Enterprise 8.1 High2022-05-06
CVE-2021-44057 Improper authentication in Photo Station — Photo Station 7.1 High2022-05-05
CVE-2021-44056 Improper authentication in Video Station — Video Station 7.1 High2022-05-05
CVE-2022-28790 Link to Windows Service 授权问题漏洞 — Link to Windows Service 4.0 Medium2022-05-03
CVE-2022-0916 Broken authentication on Logitech Options due to misvalidation of Oauth state parameter — Options 8.4 High2022-05-03
CVE-2022-0985 Moodle 授权问题漏洞 — moodle 4.3 -2022-04-29
CVE-2022-24885 Improper Authentication in Nextcloud Android Files — security-advisories 2.0 Low2022-04-27
CVE-2022-24882 Server side NTLM does not properly check parameters in FreeRDP — FreeRDP 9.1 Critical2022-04-26
CVE-2022-24883 FreeRDP Server authentication might allow invalid credentials to pass — FreeRDP 7.4 High2022-04-26
CVE-2021-3652 389-ds-base 安全漏洞 — 389-ds-base 6.5 -2022-04-18
CVE-2022-24857 Multi factor authentication bypass in django-mfa3 — django-mfa3 7.3 High2022-04-15
CVE-2022-27839 Samsung Internet 授权问题漏洞 — Samsung Internet 3.3 Low2022-04-11
CVE-2022-25833 Samsung SMR 授权问题漏洞 — Samsung Mobile Devices 3.3 Low2022-04-11

Vulnerabilities classified as CWE-287 (认证机制不恰当) represent 1187 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.