Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-02-12 | CVE-2018-19645 | Improper Authentication vulnerability in Microfocus Solutions Business Manager An Authentication Bypass issue exists in Solutions Business Manager (SBM) (formerly Serena Business Manager (SBM)) versions prior to 11.5. | 9.8 |
| 2019-02-12 | CVE-2019-6527 | Improper Authentication vulnerability in Kunbus Pr100088 Modbus Gateway Firmware 1.0.10232/1.1.13166 PR100088 Modbus gateway versions prior to Release R02 (or Software Version 1.1.13166) may allow an attacker to be able to change the password for an admin user who is currently or previously logged in, provided the device has not been restarted. | 9.8 |
| 2019-02-06 | CVE-2019-3825 | Improper Authentication vulnerability in multiple products A vulnerability was discovered in gdm before 3.31.4. | 6.4 |
| 2019-02-06 | CVE-2019-3820 | Improper Authentication vulnerability in multiple products It was discovered that the gnome-shell lock screen since version 3.15.91 did not properly restrict all contextual actions. | 4.3 |
| 2019-02-05 | CVE-2019-6521 | Improper Authentication vulnerability in Advantech Webaccess/Scada 8.3 WebAccess/SCADA, Version 8.3. | 8.6 |
| 2019-02-05 | CVE-2019-6519 | Improper Authentication vulnerability in Advantech Webaccess/Scada 8.3 WebAccess/SCADA, Version 8.3. | 9.8 |
| 2019-02-05 | CVE-2018-18505 | Improper Authentication vulnerability in multiple products An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. | 10.0 |
| 2019-02-05 | CVE-2018-19000 | Improper Authentication vulnerability in Lcds Laquis Scada 4.1/4.1.0.3391/4.1.0.3870 LCDS Laquis SCADA prior to version 4.1.0.4150 allows an authentication bypass, which may allow an attacker access to sensitive data. | 5.3 |
| 2019-01-31 | CVE-2018-17928 | Improper Authentication vulnerability in ABB Cms-770 Firmware 1.7.1 The product CMS-770 (Software Versions 1.7.1 and prior)is vulnerable that an attacker can read sensitive configuration files by bypassing the user authentication mechanism. | 6.5 |
| 2019-01-31 | CVE-2018-17926 | Improper Authentication vulnerability in ABB Eth-Fw Firmware and FW Firmware The product M2M ETHERNET (FW Versions 2.22 and prior, ETH-FW Versions 1.01 and prior) is vulnerable in that an attacker can upload a malicious language file by bypassing the user authentication mechanism. | 4.3 |