Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-02-18 | CVE-2014-3879 | Improper Authentication vulnerability in Freebsd OpenPAM Nummularia 9.2 through 10.0 does not properly handle the error reported when an include directive refers to a policy that does not exist, which causes the loaded policy chain to no be discarded and allows context-dependent attackers to bypass authentication via a login (1) without a password or (2) with an incorrect password. | 9.8 |
| 2020-02-18 | CVE-2013-4454 | Improper Authentication vulnerability in Getbutterfly Portable-PHPmyadmin 1.4.1 WordPress Portable phpMyAdmin Plugin 1.4.1 has Multiple Security Bypass Vulnerabilities | 9.1 |
| 2020-02-18 | CVE-2020-1842 | Improper Authentication vulnerability in Huawei products Huawei HEGE-560 version 1.0.1.20(SP2); OSCA-550 and OSCA-550A version 1.0.0.71(SP1); and OSCA-550AX and OSCA-550X version 1.0.0.71(SP2) have an insufficient authentication vulnerability. | 6.8 |
| 2020-02-18 | CVE-2020-1812 | Improper Authentication vulnerability in Huawei P30 Firmware HUAWEI P30 smartphones with versions earlier than 10.0.0.173(C00E73R1P11) have an improper authentication vulnerability. | 7.8 |
| 2020-02-18 | CVE-2020-1789 | Improper Authentication vulnerability in Huawei products Huawei OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X products with version 1.0.1.21(SP3) have an insufficient authentication vulnerability. | 6.8 |
| 2020-02-17 | CVE-2015-6922 | Improper Authentication vulnerability in Kaseya Virtual System Administrator Kaseya Virtual System Administrator (VSA) 7.x before 7.0.0.33, 8.x before 8.0.0.23, 9.0 before 9.0.0.19, and 9.1 before 9.1.0.9 does not properly require authentication, which allows remote attackers to bypass authentication and (1) add an administrative account via crafted request to LocalAuth/setAccount.aspx or (2) write to and execute arbitrary files via a full pathname in the PathData parameter to ConfigTab/uploader.aspx. | 9.8 |
| 2020-02-14 | CVE-2019-20046 | Improper Authentication vulnerability in S3India Husky RTU 6049-E70 Firmware 5.0 The Synergy Systems & Solutions PLC & RTU system has a vulnerability in HUSKY RTU 6049-E70 firmware versions 5.0 and prior. | 9.8 |
| 2020-02-14 | CVE-2020-5532 | Improper Authentication vulnerability in Extrun Ilbo ilbo App (ilbo App for Android prior to version 1.1.8 and ilbo App for iOS prior to version 1.2.01) allows an attacker on the same network segment to bypass authentication and to view the images which were recorded by the other ilbo user's device via unspecified vectors. | 4.3 |
| 2020-02-13 | CVE-2013-6360 | Improper Authentication vulnerability in Trendnet Ts-S402 Firmware 2.00.11 TRENDnet TS-S402 has a backdoor to enable TELNET. | 7.5 |
| 2020-02-13 | CVE-2019-3998 | Improper Authentication vulnerability in Simplisafe SS3 Firmware 1.4 Authentication bypass using an alternate path or channel in SimpliSafe SS3 firmware 1.4 allows a local, unauthenticated attacker to modify the Wi-Fi network the base station connects to. | 5.5 |