CWE-287 (认证机制不恰当) — Vulnerability Class 1187

1187 vulnerabilities classified as CWE-287 (认证机制不恰当). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2019-18314	Siemens SPPA-T3000 授权问题漏洞 — SPPA-T3000 Application Server	9.8	-	2019-12-12
CVE-2019-18315	Siemens SPPA-T3000 授权问题漏洞 — SPPA-T3000 Application Server	9.8	-	2019-12-12
CVE-2019-18317	Siemens SPPA-T3000 授权问题漏洞 — SPPA-T3000 Application Server	7.5	-	2019-12-12
CVE-2019-18318	Siemens SPPA-T3000 授权问题漏洞 — SPPA-T3000 Application Server	7.5	-	2019-12-12
CVE-2019-18319	Siemens SPPA-T3000 授权问题漏洞 — SPPA-T3000 Application Server	7.5	-	2019-12-12
CVE-2019-18320	Siemens SPPA-T3000 代码问题漏洞 — SPPA-T3000 Application Server	7.5	-	2019-12-12
CVE-2019-18321	Siemens SPPA-T3000 授权问题漏洞 — SPPA-T3000 MS3000 Migration Server	9.1	-	2019-12-12
CVE-2019-18322	Siemens SPPA-T3000 授权问题漏洞 — SPPA-T3000 MS3000 Migration Server	9.1	-	2019-12-12
CVE-2019-18284	Siemens SPPA-T3000 访问控制错误漏洞 — SPPA-T3000 Application Server	9.8	-	2019-12-12
CVE-2019-18286	Siemens SPPA-T3000 信息泄露漏洞 — SPPA-T3000 Application Server	5.3	-	2019-12-12
CVE-2019-18287	Siemens SPPA-T3000 信息泄露漏洞 — SPPA-T3000 Application Server	5.3	-	2019-12-12
CVE-2019-14910	Red Hat Keycloak 授权问题漏洞 — Keycloak	9.8	-	2019-12-05
CVE-2019-14909	Red Hat Keycloak 授权问题漏洞 — Keycloak	8.6	-	2019-12-04
CVE-2019-14856	Ansible 授权问题漏洞 — ansible	8.1	-	2019-11-26
CVE-2019-15987	Cisco WebEx Centers Username Enumeration Information Disclosure Vulnerability — Cisco WebEx Event Center	5.3	-	2019-11-26
CVE-2019-13531	Medtronic Valleylab FT10 and LS10 Improper Authentication — Valleylab FT10 Energy Platform (VLFT10GEN)	4.8	Medium	2019-11-08
CVE-2019-6832	Schneider Electric Wiser for KNX和spaceLYnk 授权问题漏洞 — spaceLYnk	8.3	-	2019-09-17
CVE-2019-12643	Cisco REST API Container for IOS XE Software Authentication Bypass Vulnerability — Cisco IOS XE Software	9.8	-	2019-08-28
CVE-2019-13423	floragunn Search Guard Kibana Plugin 权限许可和访问控制问题漏洞 — Search Guard Kibana Plugin	8.8	-	2019-08-23
CVE-2019-1938	Cisco UCS Director and Cisco UCS Director Express for Big Data API Authentication Bypass Vulnerability — Cisco Unified Computing System Director	9.8	-	2019-08-21
CVE-2019-1974	Cisco IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Authentication Bypass Vulnerability — Cisco Unified Computing System Director	9.8	-	2019-08-21
CVE-2019-1937	Cisco Integrated Management Controller Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Authentication Bypass Vulnerability — Cisco Unified Computing System Director	9.8	-	2019-08-21
CVE-2019-1946	Cisco Enterprise NFV Infrastructure Software Web-Based Management Interface Authentication Bypass Vulnerability — Cisco Enterprise NFV Infrastructure Software	6.5	-	2019-08-08
CVE-2019-5449	Nextcloud 信息泄露漏洞 — Nextcloud Server	4.3	-	2019-07-30
CVE-2019-1917	Cisco Vision Dynamic Signage Director REST API Authentication Bypass Vulnerability — Cisco Vision Dynamic Signage Director	9.8	-	2019-07-17
CVE-2019-10966	GE Aestiva和GE Aespire 授权问题漏洞 — Aestiva and Aespire	5.3	-	2019-07-10
CVE-2019-11272	PlaintextPasswordEncoder authenticates encoded passwords that are null — Spring Security	7.7	-	2019-06-26
CVE-2019-10150	Red Hat OpenShift Container Platform授权问题漏洞 — atomic-openshift	5.9	-	2019-06-12
CVE-2019-6814	Schneider Electric NET55XX Encoder 授权问题漏洞 — ÊNET55XX Encoder with firmware prior to version 2.1.9.Ê	9.8	-	2019-05-22
CVE-2019-1867	Cisco Elastic Services Controller REST API Authentication Bypass Vulnerability — Cisco Elastic Services Controller	10.0	-	2019-05-10

Vulnerabilities classified as CWE-287 (认证机制不恰当) represent 1187 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-287 (认证机制不恰当) — Vulnerability Class 1187