Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-11 | CVE-2021-43999 | Improper Authentication vulnerability in Apache Guacamole 1.2.0/1.3.0 Apache Guacamole 1.2.0 and 1.3.0 do not properly validate responses received from a SAML identity provider. | 6.0 |
| 2022-01-10 | CVE-2022-22284 | Improper authentication vulnerability in Samsung Internet prior to 16.0.2.19 allows attackers to bypass secret mode password authentication | 2.1 |
| 2022-01-05 | CVE-2021-43946 | Improper Authentication vulnerability in Atlassian Data Center and Jira Affected versions of Atlassian Jira Server and Data Center allow authenticated remote attackers to add administrator groups to filter subscriptions via a Broken Access Control vulnerability in the /secure/EditSubscription.jspa endpoint. | 4.0 |
| 2022-01-03 | CVE-2021-45917 | Improper Authentication vulnerability in SUN Moon Jingyao Network Computer Terminal Protection System Firmware The server-request receiver function of Shockwall system has an improper authentication vulnerability. | 7.7 |
| 2021-12-30 | CVE-2021-20150 | Improper Authentication vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 improperly discloses information via redirection from the setup wizard. | 5.0 |
| 2021-12-30 | CVE-2021-20158 | Improper Authentication vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 contains an authentication bypass vulnerability. | 7.5 |
| 2021-12-30 | CVE-2021-23147 | Improper Authentication vulnerability in Netgear R6700 Firmware 1.0.4.120 Netgear Nighthawk R6700 version 1.0.4.120 does not have sufficient protections for the UART console. | 7.2 |
| 2021-12-29 | CVE-2021-38688 | Improper Authentication vulnerability in Qnap Qfile An improper authentication vulnerability has been reported to affect Android App Qfile. | 5.0 |
| 2021-12-27 | CVE-2021-45890 | Improper Authentication vulnerability in Authguard Project Authguard basic/BasicAuthProvider.java in AuthGuard before 0.9.0 allows authentication via an inactive identifier. | 7.5 |
| 2021-12-26 | CVE-2021-45495 | Improper Authentication vulnerability in Netgear D7000 Firmware NETGEAR D7000 devices before 1.0.1.68 are affected by authentication bypass. | 10.0 |