Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-31 | CVE-2013-5116 | Improper Authentication vulnerability in Evernote Evernote prior to 5.5.1 has insecure password change | 7.1 |
| 2020-01-31 | CVE-2013-5114 | Improper Authentication vulnerability in Logmein Lastpass LastPass prior to 2.5.1 allows secure wipe bypass. | 6.1 |
| 2020-01-31 | CVE-2013-5112 | Improper Authentication vulnerability in Evernote Evernote before 5.5.1 has insecure PIN storage | 4.6 |
| 2020-01-30 | CVE-2020-5206 | Improper Authentication vulnerability in Apereo Opencast In Opencast before 7.6 and 8.1, using a remember-me cookie with an arbitrary username can cause Opencast to assume proper authentication for that user even if the remember-me cookie was incorrect given that the attacked endpoint also allows anonymous access. | 10.0 |
| 2020-01-29 | CVE-2013-3317 | Improper Authentication vulnerability in Netgear Wnr1000 Firmware Netgear WNR1000v3 with firmware before 1.0.2.60 contains an Authentication Bypass via the NtgrBak key. | 9.8 |
| 2020-01-29 | CVE-2013-3316 | Improper Authentication vulnerability in Netgear Wnr1000 Firmware Netgear WNR1000v3 with firmware before 1.0.2.60 contains an Authentication Bypass due to the server skipping checks for URLs containing a ".jpg". | 9.8 |
| 2020-01-29 | CVE-2013-3215 | Improper Authentication vulnerability in Vtiger CRM vtiger CRM 5.4.0 and earlier contain an Authentication Bypass Vulnerability due to improper authentication validation in the validateSession function. | 9.8 |
| 2020-01-29 | CVE-2013-2569 | Improper Authentication vulnerability in Zavio F3105 Firmware and F312A Firmware A Security Bypass vulnerability exists in Zavio IP Cameras through 1.6.3 because the RTSP protocol authentication is disabled by default, which could let a malicious user obtain unauthorized access to the live video stream. | 7.5 |
| 2020-01-28 | CVE-2013-3071 | Improper Authentication vulnerability in Netgear Wndr4700 Firmware 1.0.0.34 NETGEAR Centria WNDR4700 devices with firmware 1.0.0.34 allow authentication bypass. | 9.8 |
| 2020-01-28 | CVE-2013-1600 | Improper Authentication vulnerability in Dlink Dcs-2102 Firmware and Dcs-2121 Firmware An Authentication Bypass vulnerability exists in upnp/asf-mp4.asf when streaming live video in D-Link TESCO DCS-2121 1.05_TESCO, TESCO DCS-2102 1.05_TESCO, DCS-2121 1.06_FR, 1.06, and 1.05_RU, DCS-2102 1.06_FR. | 5.3 |