Vulnerabilities > Improper Authentication

DATE CVE VULNERABILITY TITLE RISK
2019-12-31 CVE-2018-19832 Improper Authentication vulnerability in Newinteltechmedia Project Newinteltechmedia
The NETM() function of a smart contract implementation for NewIntelTechMedia (NETM), an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function does not check the caller's identity.
network
low complexity
newinteltechmedia-project CWE-287
7.5
7.5
2019-12-31 CVE-2018-19831 Improper Authentication vulnerability in Cryptbond Network Project Cryptbond Network
The ToOwner() function of a smart contract implementation for Cryptbond Network (CBN), an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function does not check the caller's identity.
network
low complexity
cryptbond-network-project CWE-287
7.5
7.5
2019-12-30 CVE-2018-20489 Improper Authentication vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1.
network
low complexity
gitlab CWE-287
5.3
5.3
2019-12-27 CVE-2013-4982 Improper Authentication vulnerability in Avtech Avn801 DVR Firmware 1017100310091003
AVTECH AVN801 DVR has a security bypass via the administration login captcha
network
low complexity
avtech CWE-287
critical
 9.8
9.8
2019-12-27 CVE-2013-4976 Improper Authentication vulnerability in Hikvision Ds-2Cd7153-E Firmware
Hikvision DS-2CD7153-E IP Camera has security bypass via hardcoded credentials
network
low complexity
hikvision CWE-287
critical
 9.8
9.8
2019-12-27 CVE-2013-4621 Improper Authentication vulnerability in Magdevgroup Magnolia CMS
Magnolia CMS before 4.5.9 has multiple access bypass vulnerabilities
network
low complexity
magdevgroup CWE-287
critical
 9.8
9.8
2019-12-26 CVE-2013-3088 Improper Authentication vulnerability in Belkin N900 Firmware 1.00.23
Belkin N900 router (F9K1104v1) contains an Authentication Bypass using "Javascript debugging".
network
low complexity
belkin CWE-287
critical
 9.8
9.8
2019-12-26 CVE-2013-3085 Improper Authentication vulnerability in Belkin F5D8236-4 Firmware
An authentication bypass exists in the web management interface in Belkin F5D8236-4 v2.
network
low complexity
belkin CWE-287
critical
 9.8
9.8
2019-12-26 CVE-2012-3462 Improper Authentication vulnerability in Fedoraproject Sssd 1.9.0
A flaw was found in SSSD version 1.9.0.
network
low complexity
fedoraproject CWE-287
8.8
8.8
2019-12-26 CVE-2019-16327 Improper Authentication vulnerability in Dlink Dir-601 Firmware 2.00Na
D-Link DIR-601 B1 2.00NA devices are vulnerable to authentication bypass.
network
low complexity
dlink CWE-287
critical
 9.8
9.8