Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-287 (认证机制不恰当) — Vulnerability Class 1187

1187 vulnerabilities classified as CWE-287 (认证机制不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2020-3388 Cisco SD-WAN vManage Software Command Injection Vulnerability — Cisco SD-WAN vManage 7.8 -2020-07-16
CVE-2020-3197 Cisco Meetings App Missing TURN Server Credentials Expiration Vulnerability — Cisco Meeting App 8.6 -2020-07-16
CVE-2020-4074 Improper Authentication — PrestaShop 8.9 High2020-07-02
CVE-2020-3297 Cisco Small Business Smart and Managed Switches Session Management Vulnerability — Cisco Small Business 200 Series Smart Switches 9.8 -2020-07-02
CVE-2019-18252 Biotronik CardioMessenger II-S 授权问题漏洞 — BIOTRONIK CardioMessenger II-S T-Line, CardioMessenger II-S GSM 4.3 -2020-06-29
CVE-2019-18246 Biotronik CardioMessenger II-S 授权问题漏洞 — BIOTRONIK CardioMessenger II-S T-Line, CardioMessenger II-S GSM 8.1 -2020-06-29
CVE-2020-12035 Baxter PrismaFlex和PrisMax 信任管理问题漏洞 — Baxter PrismaFlex and PrisMax 5.9 -2020-06-29
CVE-2020-3361 Cisco Webex Meetings and Cisco Webex Meetings Server Token Handling Unauthorized Access Vulnerability — Cisco WebEx Meetings Server 8.1 High2020-06-18
CVE-2020-10754 NetworkManager 访问控制错误漏洞 — NetworkManager 4.3 Medium2020-06-08
CVE-2020-3216 Cisco IOS XE SD-WAN Software Authentication Bypass Vulnerability — Cisco IOS XE SD-WAN Software 6.8 -2020-06-03
CVE-2020-2018 PAN-OS: Panorama authentication bypass vulnerability — PAN-OS 9.0 Critical2020-05-13
CVE-2020-1718 Red Hat Keycloak 授权问题漏洞 — keycloak 7.1 High2020-05-12
CVE-2020-10916 TP-Link TL-WA855RE 授权问题漏洞 — TL-WA855RE 8.0 -2020-05-07
CVE-2020-3125 Cisco Adaptive Security Appliance Software Kerberos Authentication Bypass Vulnerability — Cisco Adaptive Security Appliance (ASA) Software 9.1 -2020-05-06
CVE-2020-11020 Authentication and extension bypass in Faye — Faye 8.5 High2020-04-29
CVE-2019-19104 ABB/Busch-Jaeger Telephone Gateway TG/S 3.2 Improper Authentication and Access Control — TG/S 3.2 Telephone Gateway 9.1 Critical2020-04-22
CVE-2020-7276 Unrestricted Policy Management using MfeUpgradeTool.exe — McAfee Endpoint Security (ENS) 6.4 Medium2020-04-15
CVE-2020-8148 Ubiquiti Networks UniFi Cloud Key 授权问题漏洞 — UniFi Cloud Key Gen2 5.3 -2020-04-13
CVE-2019-14880 Moodle 授权问题漏洞 — moodle 9.8 -2020-03-31
CVE-2019-15796 python-apt downloads from untrusted sources — Python-apt 4.7 Medium2020-03-26
CVE-2020-10888 TP-Link Archer A7 AC1750 授权问题漏洞 — Archer A7 9.8 -2020-03-25
CVE-2011-2054 Cisco ASA Secondary Authentication Bypass Vulnerability — Cisco ASA 4.3 Medium2020-02-19
CVE-2019-15617 Nextcloud Server 授权问题漏洞 — Nextcloud Server 4.3 -2020-02-04
CVE-2019-15620 Nextcloud Talk 信息泄露漏洞 — Nextcloud Talk 2.7 -2020-02-04
CVE-2019-15585 GitLab 授权问题漏洞 — Gitlab CE/EE 9.8 -2020-01-28
CVE-2020-5224 Session key exposure through session list in Django User Sessions — django-user-sessions 6.5 Medium2020-01-24
CVE-2019-6854 编号重复 — EcoStruxure Geo SCADA Expert (ClearSCADA) with initial releases before 1 January 2019 (see notification for more details) 7.8 -2020-01-06
CVE-2019-18337 Siemens SiNVR 3 Central Control Server和SiNVR 3 Video Server 授权问题漏洞 — Control Center Server (CCS) 9.8 Critical2019-12-12
CVE-2019-18341 Siemens SiNVR 3 Central Control Server和SiNVR 3 Video Server 授权问题漏洞 — Control Center Server (CCS) 5.3 Medium2019-12-12
CVE-2019-18312 Siemens SPPA-T3000 授权问题漏洞 — SPPA-T3000 MS3000 Migration Server 5.3 -2019-12-12

Vulnerabilities classified as CWE-287 (认证机制不恰当) represent 1187 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.