Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-21 | CVE-2017-2659 | Improper Authentication vulnerability in Dropbear SSH Project Dropbear SSH It was found that dropbear before version 2013.59 with GSSAPI leaks whether given username is valid or invalid. | 7.5 |
| 2019-03-15 | CVE-2018-19392 | Improper Authentication vulnerability in Cobham products Cobham Satcom Sailor 250 and 500 devices before 1.25 contained an unauthenticated password reset vulnerability. | 9.8 |
| 2019-03-15 | CVE-2018-18256 | Improper Authentication vulnerability in Capmon Access Manager 5.4.1.1005 An issue was discovered in CapMon Access Manager 5.4.1.1005. | 7.8 |
| 2019-03-15 | CVE-2018-18255 | Improper Authentication vulnerability in Capmon Access Manager 5.4.1.1005 An issue was discovered in CapMon Access Manager 5.4.1.1005. | 7.8 |
| 2019-03-14 | CVE-2018-12192 | Improper Authentication vulnerability in Intel products Logic bug in Kernel subsystem in Intel CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20, or Intel(R) Server Platform Services before version SPS_E5_04.00.04.393.0 may allow an unauthenticated user to potentially bypass MEBx authentication via physical access. | 6.8 |
| 2019-03-07 | CVE-2019-3775 | Improper Authentication vulnerability in Cloudfoundry UAA Release Cloud Foundry UAA, versions prior to v70.0, allows a user to update their own email address. | 6.5 |
| 2019-02-28 | CVE-2018-12399 | Improper Authentication vulnerability in multiple products When a new protocol handler is registered, the API accepts a title argument which can be used to mislead users about which domain is registering the new protocol. | 4.3 |
| 2019-02-26 | CVE-2019-7392 | Improper Authentication vulnerability in Broadcom Privileged Access Manager An improper authentication vulnerability in CA Privileged Access Manager 3.x Web-UI jk-manager and jk-status allows a remote attacker to gain sensitive information or alter configuration. | 9.1 |
| 2019-02-25 | CVE-2019-9124 | Improper Authentication vulnerability in D-Link Dir-878 Firmware 1.12B01 An issue was discovered on D-Link DIR-878 1.12B01 devices. | 9.8 |
| 2019-02-21 | CVE-2019-1666 | Improper Authentication vulnerability in Cisco Hyperflex HX Data Platform A vulnerability in the Graphite service of Cisco HyperFlex software could allow an unauthenticated, remote attacker to retrieve data from the Graphite service. | 5.3 |