Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-306 (关键功能的认证机制缺失) — Vulnerability Class 1096

1096 vulnerabilities classified as CWE-306 (关键功能的认证机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-22803 CVE-2023-22803 — XBC-DN32U 7.5 High2023-02-15
CVE-2023-0102 CVE-2023-0102 — XBC-DN32U 9.1 Critical2023-02-15
CVE-2022-43761 Lack of authentication when managing APROL database — B&R APROL 9.4 Critical2023-02-08
CVE-2022-42970 Schneider Electric Easy UPS Online Monitoring Software 访问控制错误漏洞 — APC Easy UPS Online Monitoring Software 9.8 Critical2023-02-01
CVE-2022-32528 Schneider Electric IGSS Data Server 访问控制错误漏洞 — IGSS Data Server (IGSSdataServer.exe) 8.6 High2023-01-30
CVE-2023-0052 SAUTER Controls Nova 200–220 Series Missing Authentication for Critical Function — Nova 220 (EYK220F001) DDC with BACnet connection 9.8 Critical2023-01-20
CVE-2022-3738 WAGO: Missing authentication for config export functionality in multiple products — Series WAGO PFC100 5.9 Medium2023-01-19
CVE-2023-21743 Microsoft SharePoint Server Security Feature Bypass Vulnerability — Microsoft SharePoint Enterprise Server 2016 5.3 Medium2023-01-10
CVE-2022-47377 SICK SIM2000ST 访问控制错误漏洞 — SICK SIM2000ST (LFT PPC) 9.8 -2022-12-16
CVE-2022-45477 Telepad 访问控制错误漏洞 — Telepad 9.8 -2022-12-05
CVE-2022-45479 BEApps Mobile PC Keyboard 访问控制错误漏洞 — PC Keyboard WiFi & Bluetooth 9.8 -2022-12-05
CVE-2022-45481 thisAAY Lazy Mouse 访问控制错误漏洞 — Lazy Mouse 9.8 -2022-12-05
CVE-2022-4018 Missing Authentication for Critical Function in ikus060/rdiffweb — ikus060/rdiffweb 9.4 -2022-11-16
CVE-2022-45378 Apache SOAP allows unauthenticated users to potentially invoke arbitrary code — Apache SOAP 9.8 -2022-11-14
CVE-2022-42785 Wiesemann & Theis: Authentication bypass in Com-Server family — Com-Server LC 9.8 Critical2022-11-10
CVE-2022-27582 SICK SIM Series 访问控制错误漏洞 — SICK SIM4000 (PPC) 9.4 -2022-11-01
CVE-2022-27584 SICK SIM Series 访问控制错误漏洞 — SICK SIM2000ST (PPC) 9.8 -2022-11-01
CVE-2022-27585 SICK SIM Series 访问控制错误漏洞 — SICK SIM1000 FX 9.8 -2022-11-01
CVE-2022-27586 SICK SIM Series 访问控制错误漏洞 — SICK SIM1004 9.4 -2022-11-01
CVE-2022-43989 SICK SIM Series 访问控制错误漏洞 — SICK SIM2x00 (ARM) 9.8 -2022-11-01
CVE-2022-43990 SICK SIM Series 访问控制错误漏洞 — SICK SIM1012 9.4 -2022-11-01
CVE-2022-41629 Delta Electronics InfraSuite Device Master 访问控制错误漏洞 — InfraSuite Device Master 7.5 High2022-10-31
CVE-2022-41776 Delta Electronics InfraSuite Device Master 访问控制错误漏洞 — InfraSuite Device Master 7.5 High2022-10-31
CVE-2022-41644 Delta Electronics InfraSuite Device Master 访问控制错误漏洞 — InfraSuite Device Master 8.8 High2022-10-31
CVE-2022-41688 Delta Electronics InfraSuite Device Master 访问控制错误漏洞 — InfraSuite Device Master 9.8 Critical2022-10-31
CVE-2022-40202 Delta Electronics InfraSuite Device Master 访问控制错误漏洞 — InfraSuite Device Master 9.8 Critical2022-10-31
CVE-2022-2474 Haas Automation Controller 访问控制错误漏洞 — Haas CNC Controller 9.8 Critical2022-10-28
CVE-2022-27623 Synology DiskStation Manager 访问控制错误漏洞 — DiskStation Manager (DSM) 7.4 High2022-10-25
CVE-2022-3327 Missing Authentication for Critical Function in ikus060/rdiffweb — ikus060/rdiffweb 9.4 -2022-10-19
CVE-2022-20830 Cisco Software-Defined Application Visibility and Control on Cisco vManage Authentication Bypass Vulnerability — Cisco SD-WAN vManage 5.3 Medium2022-10-10

Vulnerabilities classified as CWE-306 (关键功能的认证机制缺失) represent 1096 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.