Vulnerabilities > DEPRECATED: Authentication Bypass Issues
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-22 | CVE-2019-3899 | DEPRECATED: Authentication Bypass Issues vulnerability in multiple products It was found that default configuration of Heketi does not require any authentication potentially exposing the management interface to misuse. | 9.8 |
| 2018-09-21 | CVE-2018-14643 | DEPRECATED: Authentication Bypass Issues vulnerability in Theforeman Foreman An authentication bypass flaw was found in the smart_proxy_dynflow component used by Foreman. | 9.8 |
| 2018-07-26 | CVE-2017-7537 | DEPRECATED: Authentication Bypass Issues vulnerability in multiple products It was found that a mock CMC authentication plugin with a hardcoded secret was accidentally enabled by default in the pki-core package before 10.6.4. | 7.5 |