Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-06-17 | CVE-2019-7579 | Improper Authentication vulnerability in Linksys Wrt1900Acs Firmware 1.0.3.187766 An issue was discovered on Linksys WRT1900ACS 1.0.3.187766 devices. | 7.5 |
| 2019-06-12 | CVE-2019-10157 | Improper Authentication vulnerability in Redhat Keycloak and Single Sign-On It was found that Keycloak's Node.js adapter before version 4.8.3 did not properly verify the web token received from the server in its backchannel logout . | 5.5 |
| 2019-06-07 | CVE-2018-19999 | Improper Authentication vulnerability in Solarwinds Serv-U FTP Server 15.1.6.25 The local management interface in SolarWinds Serv-U FTP Server 15.1.6.25 has incorrect access controls that permit local users to bypass authentication in the application and execute code in the context of the Windows SYSTEM account, leading to privilege escalation. | 7.8 |
| 2019-06-05 | CVE-2019-1842 | Improper Authentication vulnerability in Cisco IOS XR Firmware A vulnerability in the Secure Shell (SSH) authentication function of Cisco IOS XR Software could allow an authenticated, remote attacker to successfully log in to an affected device using two distinct usernames. | 5.4 |
| 2019-06-05 | CVE-2018-7123 | Improper Authentication vulnerability in HP Intelligent Management Center A remote denial of service vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. | 7.5 |
| 2019-06-05 | CVE-2018-7121 | Improper Authentication vulnerability in HP Intelligent Management Center A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. | 9.8 |
| 2019-06-05 | CVE-2018-18571 | Improper Authentication vulnerability in Citrix Xenmobile Server 10.8.0/10.9.0 An Incorrect Access Control vulnerability has been identified in Citrix XenMobile Server 10.8.0 before Rolling Patch 6 and 10.9.0 before Rolling Patch 3. | 9.1 |
| 2019-06-04 | CVE-2019-5298 | Improper Authentication vulnerability in Huawei Ap4050Dn-E Firmware There is an improper authentication vulnerability in some Huawei AP products before version V200R009C00SPC800. | 6.8 |
| 2019-06-03 | CVE-2019-12564 | Improper Authentication vulnerability in Douco Douphp 1.5 In DouCo DouPHP v1.5 Release 20190516, remote attackers can view the database backup file via a brute-force guessing approach for data/backup/DyyyymmddThhmmss.sql filenames. | 9.8 |
| 2019-06-02 | CVE-2019-12530 | Improper Authentication vulnerability in Glpi Dashboard Project Glpi Dashboard Incorrect access control was discovered in the stdonato Dashboard plugin through 0.9.7 for GLPI, affecting df.php, issue.php, load.php, mem.php, traf.php, and uptime.php in front/sh. | 9.8 |