Vulnerabilities > Improper Authentication

DATE CVE VULNERABILITY TITLE RISK
2022-01-11 CVE-2021-43999 Improper Authentication vulnerability in Apache Guacamole 1.2.0/1.3.0
Apache Guacamole 1.2.0 and 1.3.0 do not properly validate responses received from a SAML identity provider.
network
apache CWE-287
6.0
2022-01-10 CVE-2022-22284 Improper authentication vulnerability in Samsung Internet prior to 16.0.2.19 allows attackers to bypass secret mode password authentication
local
low complexity
CWE-287
2.1
2022-01-05 CVE-2021-43946 Improper Authentication vulnerability in Atlassian Data Center and Jira
Affected versions of Atlassian Jira Server and Data Center allow authenticated remote attackers to add administrator groups to filter subscriptions via a Broken Access Control vulnerability in the /secure/EditSubscription.jspa endpoint.
network
low complexity
atlassian CWE-287
4.0
2022-01-03 CVE-2021-45917 Improper Authentication vulnerability in SUN Moon Jingyao Network Computer Terminal Protection System Firmware
The server-request receiver function of Shockwall system has an improper authentication vulnerability.
low complexity
sun-moon-jingyao CWE-287
7.7
2021-12-30 CVE-2021-20150 Improper Authentication vulnerability in Trendnet Tew-827Dru Firmware 2.08B01
Trendnet AC2600 TEW-827DRU version 2.08B01 improperly discloses information via redirection from the setup wizard.
network
low complexity
trendnet CWE-287
5.0
2021-12-30 CVE-2021-20158 Improper Authentication vulnerability in Trendnet Tew-827Dru Firmware 2.08B01
Trendnet AC2600 TEW-827DRU version 2.08B01 contains an authentication bypass vulnerability.
network
low complexity
trendnet CWE-287
7.5
2021-12-30 CVE-2021-23147 Improper Authentication vulnerability in Netgear R6700 Firmware 1.0.4.120
Netgear Nighthawk R6700 version 1.0.4.120 does not have sufficient protections for the UART console.
local
low complexity
netgear CWE-287
7.2
2021-12-29 CVE-2021-38688 Improper Authentication vulnerability in Qnap Qfile
An improper authentication vulnerability has been reported to affect Android App Qfile.
network
low complexity
qnap CWE-287
5.0
2021-12-27 CVE-2021-45890 Improper Authentication vulnerability in Authguard Project Authguard
basic/BasicAuthProvider.java in AuthGuard before 0.9.0 allows authentication via an inactive identifier.
network
low complexity
authguard-project CWE-287
7.5
2021-12-26 CVE-2021-45495 Improper Authentication vulnerability in Netgear D7000 Firmware
NETGEAR D7000 devices before 1.0.1.68 are affected by authentication bypass.
network
low complexity
netgear CWE-287
critical
10.0