Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-15 | CVE-2018-14008 | Improper Authentication vulnerability in Arista EOS Arista EOS through 4.21.0F allows a crash because 802.1x authentication is mishandled. | 6.5 |
| 2019-08-14 | CVE-2019-15046 | Improper Authentication vulnerability in Zohocorp Manageengine Servicedesk Plus Zoho ManageEngine ServiceDesk Plus 10 before 10509 allows unauthenticated sensitive information leakage during Fail Over Service (FOS) replication, aka SD-79989. | 7.5 |
| 2019-08-13 | CVE-2019-5223 | Improper Authentication vulnerability in Huawei Pcmanager 9.1.3.1 PCManager 9.1.3.1 has an improper authentication vulnerability. | 7.8 |
| 2019-08-13 | CVE-2019-14985 | Improper Authentication vulnerability in Eq-3 Homematic Ccu2 Firmware and Homematic Ccu3 Firmware eQ-3 Homematic CCU2 and CCU3 with the CUxD AddOn installed allow Remote Code Execution by unauthenticated attackers with access to the web interface, because this interface can access the CMD_EXEC virtual device type 28. | 9.8 |
| 2019-08-08 | CVE-2018-20954 | Improper Authentication vulnerability in Mailpile The "Security and Privacy" Encryption feature in Mailpile before 1.0.0rc4 does not exclude disabled, revoked, and expired keys. | 7.5 |
| 2019-08-08 | CVE-2019-1946 | Improper Authentication vulnerability in Cisco Enterprise Network Function Virtualization Infrastructure A vulnerability in the web-based management interface of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an unauthenticated, remote attacker to bypass authentication and get limited access to the web-based management interface. | 6.5 |
| 2019-08-07 | CVE-2019-14432 | Improper Authentication vulnerability in Loom 0.16.0 Incorrect authentication of application WebSocket connections in Loom Desktop for Mac up to 0.16.0 allows remote code execution from either malicious JavaScript in a browser or hosts on the same network, during periods in which a user is recording a video with the application. | 8.8 |
| 2019-08-06 | CVE-2019-14705 | Improper Authentication vulnerability in Microdigital products An Incorrect Access Control issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5 because any valid cookie can be used to make requests as an admin. | 7.2 |
| 2019-08-06 | CVE-2019-5679 | Improper Authentication vulnerability in Nvidia Shield Experience NVIDIA Shield TV Experience prior to v8.0, NVIDIA Tegra bootloader contains a vulnerability in nvtboot where the Trusted OS image is improperly authenticated, which may lead to code execution, denial of service, escalation of privileges, and information disclosure, code execution, denial of service, or escalation of privileges | 7.8 |
| 2019-08-02 | CVE-2019-7163 | Improper Authentication vulnerability in TCL Alcatel Linkzone Firmware Mw40Vv1.0Mw40Lu02.0002 The web interface of Alcatel LINKZONE MW40-V-V1.0 MW40_LU_02.00_02 devices is vulnerable to an authentication bypass that allows an unauthenticated user to have access to the web interface without knowing the administrator's password. | 9.8 |