Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-287 (认证机制不恰当) — Vulnerability Class 1187

1187 vulnerabilities classified as CWE-287 (认证机制不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-25832 Samsung SMR 授权问题漏洞 — Samsung Mobile Devices 4.0 Medium2022-04-11
CVE-2022-1248 SAP Information System POST Request add_admin.php improper authentication — SAP Information System 7.3 High2022-04-06
CVE-2021-20238 Red Hat OpenShift Container Platform 访问控制错误漏洞 — openshift/machine-config-operator 5.9 -2022-04-01
CVE-2022-1084 SourceCodester One Church Management System Session userregister.php improper authentication — One Church Management System 7.3 High2022-03-29
CVE-2018-25030 Mirmay Secure Private Browser / File Manager Auto Lock improper authentication — Secure Private Browser 3.3 Low2022-03-28
CVE-2022-0342 Zyxel USG/ZyWALL 授权问题漏洞 — USG/ZyWALL series firmware 9.8 Critical2022-03-28
CVE-2022-1049 Pacemaker 授权问题漏洞 — clusterlabs/pcs 8.8 -2022-03-25
CVE-2021-26620 IPTIME NAS2dual improper authentication vulnerability — ipTIME NAS product (NAS1, 2, 3, 4, 1dual, 2dual 4dual) 7.5 High2022-03-25
CVE-2021-4197 Linux kernel 授权问题漏洞 — kernel 7.8 -2022-03-23
CVE-2021-44759 Improper authentication vulnerability in TLS origin verification — Apache Traffic Server 7.7 -2022-03-23
CVE-2022-24740 Improper Authentication in Volto — volto 5.0 Medium2022-03-14
CVE-2022-24748 Incorrect Authentication in shopware — platform 6.8 Medium2022-03-09
CVE-2022-0715 多款Schneider Electric产品数据伪造问题漏洞 — APC Smart-UPS 9.1 -2022-03-09
CVE-2022-25825 Samsung Account 授权问题漏洞 — Samsung Account 6.2 Medium2022-03-08
CVE-2022-25817 SAMSUNG One UI Home 安全漏洞 — Samsung Mobile Devices 4.0 Medium2022-03-08
CVE-2022-25816 Samsung Lock and mask apps setting 授权问题漏洞 — Samsung Mobile Devices 4.1 Medium2022-03-08
CVE-2022-24738 Account compromise in Evmos — evmos 8.1 High2022-03-07
CVE-2022-0492 Linux kernel 授权问题漏洞 — kernel 7.8 -2022-03-03
CVE-2022-0730 Cacti 授权问题漏洞 — Cati 9.8 -2022-03-03
CVE-2022-23635 Unauthenticated control plane denial of service attack in Istio — istio 7.5 High2022-02-22
CVE-2022-23654 Improper write access check in Requarks/wiki — wiki 8.1 High2022-02-22
CVE-2022-23652 Privilege escalation using hop-by-hop Connection header — capsule-proxy 8.8 High2022-02-22
CVE-2016-2124 Samba 授权问题漏洞 — samba 5.9 -2022-02-18
CVE-2020-25719 Samba 竞争条件问题漏洞 — samba 8.8 -2022-02-18
CVE-2021-22796 Schneider Electric 多款产品授权问题漏洞 — C-Bus Toolkit (V1.15.9 and prior), C-Gate Server (V2.11.7 and prior) 8.4 -2022-02-11
CVE-2021-38679 Improper Authentication in Kazoo Server — Kazoo Server 6.5 Medium2022-02-11
CVE-2022-23600 Limited ability to spoof SAML authentication with missing audience verification — fleet 5.3 Medium2022-02-04
CVE-2021-36346 Dell EMC iDRAC 安全漏洞 — Integrated Dell Remote Access Controller (iDRAC) 5.3 -2022-01-25
CVE-2021-34865 NETGEAR 授权问题漏洞 — Multiple Routers 8.8 -2022-01-25
CVE-2022-21692 Improper Access Control in Onionshare — onionshare 4.3 Medium2022-01-18

Vulnerabilities classified as CWE-287 (认证机制不恰当) represent 1187 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.