Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-288 (使用候选路径或通道进行的认证绕过) — Vulnerability Class 436

436 vulnerabilities classified as CWE-288 (使用候选路径或通道进行的认证绕过). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2019-5473 GitLab 授权问题漏洞 — gitlab.com 7.2 -2019-09-09
CVE-2019-13526 Datalogic AV7000 Linear Barcode Scanner 授权问题漏洞 — Datalogic AV7000 Linear barcode scanner 9.8 -2019-08-29
CVE-2019-5451 Nextcloud Android app 访问控制错误漏洞 — com.nextcloud.client 4.6 -2019-07-30
CVE-2019-5453 Nextcloud Android app 授权问题漏洞 — com.nextcloud.client 6.1 -2019-07-30
CVE-2019-5455 Nextcloud Android app 授权问题漏洞 — com.nextcloud.client 6.8 -2019-07-30
CVE-2019-6551 Pangea Communications Internet FAX ATA 授权问题漏洞 — Pangea Communications Internet FAX ATA 7.5 -2019-02-28
CVE-2018-19000 LCDS LAquis SCADA 授权问题漏洞 — LCDS Laquis SCADA 7.5 -2019-02-05
CVE-2018-17918 CIRCONTROL CirCarLife 授权问题漏洞 — Circontrol CirCarLife all versions prior to 4.3.1 9.8 -2018-11-02
CVE-2018-8859 Echelon SmartServer 1、SmartServer 2和i.LON 100 安全漏洞 — SmartServer 1 9.8 -2018-07-24
CVE-2018-5386 Some Navarino Infinity functions placed in the URL can bypass any authentication mechanism leading to an information leak — Infinity 7.5 -2018-07-24
CVE-2016-9497 Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, is vulnerable to an authentication bypass using an alternate path or channel — HN7740S 8.8 -2018-07-13
CVE-2018-4852 Siemens SICLOCK TC100和SICLOCK TC400 安全漏洞 — SICLOCK TC100, SICLOCK TC400 9.8 -2018-07-03
CVE-2018-10841 GlusterFS 权限许可和访问控制问题漏洞 — glusterfs 8.8 -2018-06-20
CVE-2017-9944 Siemens 7KT PAC1200 Data Manager 安全漏洞 — Siemens 7KT PAC1200 data manager (7KT1260) All versions < V2.03 9.8 -2017-12-26
CVE-2017-6871 Siemens SIMATIC WinCC Sm@rtClient for Android和Android Lite 安全漏洞 — SIMATIC WinCC Sm@rtClient for Android, SIMATIC WinCC Sm@rtClient Lite for Android 6.8 -2017-08-08
CVE-2017-5174 Geutebruck IP Camera G-Cam/EFD-2250 安全漏洞 — Geutebruck IP Cameras 9.8 -2017-05-19

Vulnerabilities classified as CWE-288 (使用候选路径或通道进行的认证绕过) represent 436 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.