Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-306 (关键功能的认证机制缺失) — Vulnerability Class 1095

1095 vulnerabilities classified as CWE-306 (关键功能的认证机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-26394 Unauthenticated network reconfiguration via TCP/UDP — Baxter Spectrum Wireless Battery Module (WBM) 5.5 Medium2022-09-09
CVE-2022-1368 Cognex 3D-A1000 Dimensioning System Missing Authentication for Critical Function — 3D-A1000 Dimensioning System 9.8 Critical2022-09-06
CVE-2022-34858 WordPress OAuth 2.0 client for SSO plugin <= 1.11.3 - Authentication Bypass vulnerability — OAuth 2.0 client for SSO (WordPress plugin) 9.8 Critical2022-08-22
CVE-2022-2242 KUKA V/KSS WoV SH access control vulnerability — SystemSoftware V/KSS 9.8 Critical2022-08-10
CVE-2022-35865 BMC Community Track-It! 访问控制错误漏洞 — Track-It! 9.8 -2022-08-03
CVE-2022-35871 Inductive Automation Ignition 访问控制错误漏洞 — Ignition 8.4 -2022-07-25
CVE-2022-2138 Advantech iView — iView 8.2 High2022-07-22
CVE-2021-36200 Metasys ADS/ADX/OAS with MUI — Metasys ADS/ADX/OAS server 5.3 Medium2022-07-22
CVE-2022-20857 Cisco Nexus Dashboard Unauthorized Access Vulnerabilities — Cisco Nexus Dashboard 9.8 Critical2022-07-21
CVE-2022-20858 Cisco Nexus Dashboard Unauthorized Access Vulnerabilities — Cisco Nexus Dashboard 9.8 Critical2022-07-21
CVE-2022-20861 Cisco Nexus Dashboard Unauthorized Access Vulnerabilities — Cisco Nexus Dashboard 9.8 Critical2022-07-21
CVE-2021-34538 Apache Hive Security vulnerability in Hive with UDFs — Apache Hive 7.5 -2022-07-16
CVE-2022-28771 SAP Business One License service API 访问控制错误漏洞 — SAP Business One License service API 7.5 -2022-07-12
CVE-2022-33138 Siemens SIMATIC 访问控制错误漏洞 — SIMATIC MV540 H 9.1 -2022-07-12
CVE-2021-44222 Siemens SIMATIC eaSie Core Package 访问控制错误漏洞 — SIMATIC eaSie Core Package 9.8 -2022-07-12
CVE-2022-21952 SUMA unauthenticated remote DoS via resource exhaustion — SUSE Manager Server 4.1 7.5 High2022-06-22
CVE-2022-32157 Splunk Enterprise deployment servers allow unauthenticated forwarder bundle downloads — Splunk Enterprise 7.5 High2022-06-15
CVE-2022-32251 Siemens SINEMA Remote Connect Server 访问控制错误漏洞 — SINEMA Remote Connect Server 8.8 High2022-06-14
CVE-2022-30230 Siemens SICAM GridEdge Essential 访问控制错误漏洞 — SICAM GridEdge (Classic) 9.8 Critical2022-06-14
CVE-2022-30229 Siemens SICAM GridEdge Essential 授权问题漏洞 — SICAM GridEdge (Classic) 7.2 High2022-06-14
CVE-2022-29226 Trivial authentication bypass in Envoy — envoy 10.0 Critical2022-06-09
CVE-2022-27169 Open Automation Software OAS Platform 访问控制错误漏洞 — OAS Platform 7.5 High2022-05-25
CVE-2022-26833 Open Automation Software OAS Platform 访问控制错误漏洞 — OAS Platform 9.4 Critical2022-05-25
CVE-2022-26303 Open Automation Software OAS Platform 访问控制错误漏洞 — OAS Platform 7.5 High2022-05-25
CVE-2022-26082 Open Automation Software OAS Platform 访问控制错误漏洞 — OAS Platform 9.1 Critical2022-05-25
CVE-2022-26067 Open Automation Software OAS Platform 访问控制错误漏洞 — OAS Platform 4.9 Medium2022-05-25
CVE-2022-26043 Open Automation Software OAS Platform 访问控制错误漏洞 — OAS Platform 7.5 High2022-05-25
CVE-2022-26026 Open Automation Software OAS Platform 访问控制错误漏洞 — OAS Platform 7.5 High2022-05-25
CVE-2022-29881 Siemens SICAM 访问控制错误漏洞 — SICAM T 5.3 Medium2022-05-10
CVE-2022-29879 Siemens SICAM 访问控制错误漏洞 — SICAM T 4.3 Medium2022-05-10

Vulnerabilities classified as CWE-306 (关键功能的认证机制缺失) represent 1095 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.