Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-26 | CVE-2014-5432 | Improper Authentication vulnerability in Baxter Sigma Spectrum Infusion System Firmware 6.05 Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module (WBM) version 16 is remotely accessible via Port 22/SSH without authentication. | 9.8 |
| 2019-03-21 | CVE-2019-6441 | Improper Authentication vulnerability in Coship products An issue was discovered on Shenzhen Coship RT3050 4.0.0.40, RT3052 4.0.0.48, RT7620 10.0.0.49, WM3300 5.0.0.54, and WM3300 5.0.0.55 devices. | 9.8 |
| 2019-03-21 | CVE-2018-19783 | Improper Authentication vulnerability in Kentix Multisensor-Lan Firmware 5.63.00 Kentix MultiSensor-LAN 5.63.00 devices and previous allow Authentication Bypass via an Alternate Path or Channel. | 9.8 |
| 2019-03-21 | CVE-2017-2659 | Improper Authentication vulnerability in Dropbear SSH Project Dropbear SSH It was found that dropbear before version 2013.59 with GSSAPI leaks whether given username is valid or invalid. | 7.5 |
| 2019-03-15 | CVE-2018-19392 | Improper Authentication vulnerability in Cobham products Cobham Satcom Sailor 250 and 500 devices before 1.25 contained an unauthenticated password reset vulnerability. | 9.8 |
| 2019-03-15 | CVE-2018-18256 | Improper Authentication vulnerability in Capmon Access Manager 5.4.1.1005 An issue was discovered in CapMon Access Manager 5.4.1.1005. | 7.8 |
| 2019-03-15 | CVE-2018-18255 | Improper Authentication vulnerability in Capmon Access Manager 5.4.1.1005 An issue was discovered in CapMon Access Manager 5.4.1.1005. | 7.8 |
| 2019-03-14 | CVE-2018-12192 | Improper Authentication vulnerability in Intel products Logic bug in Kernel subsystem in Intel CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20, or Intel(R) Server Platform Services before version SPS_E5_04.00.04.393.0 may allow an unauthenticated user to potentially bypass MEBx authentication via physical access. | 6.8 |
| 2019-03-07 | CVE-2019-3775 | Improper Authentication vulnerability in Cloudfoundry UAA Release Cloud Foundry UAA, versions prior to v70.0, allows a user to update their own email address. | 6.5 |
| 2019-02-28 | CVE-2018-12399 | Improper Authentication vulnerability in multiple products When a new protocol handler is registered, the API accepts a title argument which can be used to mislead users about which domain is registering the new protocol. | 4.3 |