Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-19 | CVE-2019-20879 | Improper Authentication vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.8.0, 5.7.2, 5.6.5, and 4.10.7. | 4.3 |
| 2020-06-19 | CVE-2019-20875 | Improper Authentication vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8. | 5.3 |
| 2020-06-19 | CVE-2018-21263 | Improper Authentication vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.7.0, 4.6.2, and 4.5.2. | 8.8 |
| 2020-06-19 | CVE-2020-14455 | Improper Authentication vulnerability in Mattermost Desktop An issue was discovered in Mattermost Desktop App before 4.4.0. | 6.5 |
| 2020-06-18 | CVE-2020-3361 | Improper Authentication vulnerability in Cisco Webex Meetings Server A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to gain unauthorized access to a vulnerable Webex site. | 9.8 |
| 2020-06-15 | CVE-2018-21246 | Improper Authentication vulnerability in Caddyserver Caddy Caddy before 0.10.13 mishandles TLS client authentication, as demonstrated by an authentication bypass caused by the lack of the StrictHostMatching mode. | 9.8 |
| 2020-06-15 | CVE-2020-9076 | Improper Authentication vulnerability in Huawei P30 Firmware, P30 PRO Firmware and Tony-Al00B Firmware HUAWEI P30;HUAWEI P30 Pro;Tony-AL00B smartphones with versions earlier than 10.1.0.135(C00E135R2P11); versions earlier than 10.1.0.135(C00E135R2P8), versions earlier than 10.1.0.135 have an improper authentication vulnerability. | 6.8 |
| 2020-06-15 | CVE-2020-4494 | Improper Authentication vulnerability in IBM products IBM Spectrum Protect Client 8.1.7.0 through 8.1.9.1 (Linux and Windows), 8.1.9.0 trough 8.1.9.1 (AIX) and IBM Spectrum Protect for Space Management 8.1.7.0 through 8.1.9.1 (Linux), 8.1.9.0 through 8.1.9.1 (AIX) web user interfaces could allow an attacker to bypass authentication due to improper session validation which can result in access to unauthorized resources. | 7.5 |
| 2020-06-08 | CVE-2020-9099 | Improper Authentication vulnerability in Huawei products Huawei products IPS Module; NGFW Module; NIP6300; NIP6600; NIP6800; Secospace USG6300; Secospace USG6500; Secospace USG6600; USG9500 with versions of V500R001C00; V500R001C20; V500R001C30; V500R001C50; V500R001C60; V500R001C80; V500R005C00; V500R005C10; V500R005C20; V500R002C00; V500R002C10; V500R002C20; V500R002C30 have an improper authentication vulnerability. | 9.8 |
| 2020-06-05 | CVE-2020-12848 | Improper Authentication vulnerability in Pydio Cells 2.0.4 In Pydio Cells 2.0.4, once an authenticated user shares a file selecting the create a public link option, a hidden shared user account is created in the backend with a random username. | 5.4 |