Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-287 (认证机制不恰当) — Vulnerability Class 1187

1187 vulnerabilities classified as CWE-287 (认证机制不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2020-8267 Ubiquiti Networks UniFi Cloud Key 授权问题漏洞 — UniFi Protect 8.2 -2020-11-05
CVE-2020-5425 User Impersonation possible in Tanzu SSO — Single Sign-On for VMware Tanzu 8.2 -2020-10-31
CVE-2020-8236 Nextcloud 授权问题漏洞 — Nextcloud Server 6.1 -2020-10-30
CVE-2020-3410 Cisco Firepower Management Center Software Common Access Card Authentication Bypass Vulnerability — Cisco Firepower Management Center 8.1 High2020-10-21
CVE-2020-15240 Regression in JWT Signature Validation — omniauth-auth0 7.4 High2020-10-21
CVE-2020-15269 Expired token reuse in Spree — spree 7.4 High2020-10-20
CVE-2020-14299 PicketBox 授权问题漏洞 — picketbox 6.5 -2020-10-16
CVE-2020-8350 Lenovo ThinkPad Stack Wireless Router 授权问题漏洞 — ThinkPad Stack WIreless Router firmware 8.8 High2020-10-14
CVE-2020-15243 WebApi Authentication attribute missing in Smartstore — SmartStoreNET 9.1 Critical2020-10-08
CVE-2020-15222 Replay of private_key_jwt possible in ORY Fosite — fosite 8.1 High2020-09-24
CVE-2019-16028 Cisco Firepower Management Center Lightweight Directory Access Protocol Authentication Bypass Vulnerability — Cisco Firepower Management Center 9.8 -2020-09-23
CVE-2020-8200 Citrix StoreFront 授权问题漏洞 — Citrix StoreFront 6.5 -2020-09-18
CVE-2020-8253 Citrix XenMobile Server 授权问题漏洞 — Citrix XenMobile Server 7.5 -2020-09-18
CVE-2020-7297 Web Gateway (MWG) - Privilege Escalation vulnerability — McAfee Web Gateway (MWG) 5.7 Medium2020-09-15
CVE-2020-7296 Web Gateway (MWG) - Privilege Escalation vulnerability — McAfee Web Gateway (MWG) 5.7 Medium2020-09-15
CVE-2020-7295 Web Gateway (MWG) - Privilege Escalation vulnerability — McAfee Web Gateway (MWG) 3.5 Low2020-09-15
CVE-2020-7294 Web Gateway (MWG) - Privilege Escalation vulnerability — McAfee Web Gateway (MWG) 4.6 Medium2020-09-15
CVE-2020-7293 Web Gateway (MWG) - Privilege Escalation vulnerability — McAfee Web Gateway (MWG) 9.0 Critical2020-09-15
CVE-2020-16098 Gallagher Group Command Centre 访问控制错误漏洞 — Command Centre 9.8 Critical2020-09-15
CVE-2020-16222 Philips Patient Monitoring Devices Improper Authentication — Patient Information Center iX (PICiX) 8.8 -2020-09-11
CVE-2020-7323 Authentication Protection Bypass vulnerability in ENS for Windows — Endpoint Security for Windows 6.9 Medium2020-09-09
CVE-2020-8097 Improper authentication vulnerability in Bitdefender Endpoint Security Tools and Endpoint Security SDK (VA-8646) — Endpoinit Security Tools for Windows 8.1 High2020-08-30
CVE-2020-15164 Authentication Bypass in Scratch Login (mediawiki-scratch-login) — mediawiki-scratch-login 10.0 Critical2020-08-28
CVE-2020-3151 Cisco Connected Mobile Experiences Restricted Shell Escape Vulnerability — Cisco Connected Mobile Experiences 8.2 -2020-08-26
CVE-2020-16239 Philips SureSigns VS4 Improper Authentication — SureSigns VS4 4.9 Medium2020-08-21
CVE-2020-15136 Improper authentication in etcd — etcd 6.5 Medium2020-08-06
CVE-2020-8108 Insufficient client validation in Bitdefender Endpoint Security for Mac (VA-8759) — Endpoint Security for Mac 8.2 High2020-08-03
CVE-2020-8206 Pulse Secure Pulse Connect Secure 授权问题漏洞 — Pulse Connect Secure 7.5 -2020-07-30
CVE-2020-10918 C-More HMI EA9 授权问题漏洞 — HMI EA9 7.5 -2020-07-23
CVE-2020-14494 OpenClinic GA 授权问题漏洞 — OpenClinic GA 9.8 -2020-07-20

Vulnerabilities classified as CWE-287 (认证机制不恰当) represent 1187 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.