Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-06 | CVE-2016-6541 | Improper Authentication vulnerability in Thetrackr Trackr Bravo Firmware TrackR Bravo device allows unauthenticated pairing, which enables unauthenticated connected applications to write to various device attributes. | 8.8 |
| 2018-07-05 | CVE-2018-3761 | Improper Authentication vulnerability in Nextcloud Server Nextcloud Server before 12.0.8 and 13.0.3 suffer from improper authentication on the OAuth2 token endpoint. | 8.1 |
| 2018-07-03 | CVE-2018-11052 | Improper Authentication vulnerability in Dellemc Elastic Cloud Storage 3.2.0.0/3.2.0.1 Dell EMC ECS versions 3.2.0.0 and 3.2.0.1 contain an authentication bypass vulnerability. | 9.8 |
| 2018-07-03 | CVE-2018-4852 | Improper Authentication vulnerability in Siemens Siclock Tc100 Firmware and Siclock Tc400 Firmware A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). | 9.8 |
| 2018-07-02 | CVE-2018-12575 | Improper Authentication vulnerability in Tp-Link Tl-Wr841N Firmware 0.9.14.16 On TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 171019 Rel.55346n devices, all actions in the web interface are affected by bypass of authentication via an HTTP request. | 9.8 |
| 2018-06-29 | CVE-2018-8902 | Improper Authentication vulnerability in Ivanti Avalanche An issue was discovered in Ivanti Avalanche for all versions between 5.3 and 6.2. | 6.5 |
| 2018-06-29 | CVE-2018-12984 | Improper Authentication vulnerability in Hycus CMS Project Hycus CMS 1.0.4 Hycus CMS 1.0.4 allows Authentication Bypass via "'=' 'OR'" credentials. | 9.8 |
| 2018-06-26 | CVE-2018-6667 | Improper Authentication vulnerability in Mcafee web Gateway Authentication Bypass vulnerability in the administrative user interface in McAfee Web Gateway 7.8.1.0 through 7.8.1.5 allows remote attackers to execute arbitrary code via Java management extensions (JMX). | 9.8 |
| 2018-06-21 | CVE-2018-12613 | Improper Authentication vulnerability in PHPmyadmin 4.8.0/4.8.0.1/4.8.1 An issue was discovered in phpMyAdmin 4.8.x before 4.8.2, in which an attacker can include (view and potentially execute) files on the server. | 8.8 |
| 2018-06-21 | CVE-2018-0362 | Improper Authentication vulnerability in Cisco products A vulnerability in BIOS authentication management of Cisco 5000 Series Enterprise Network Compute System and Cisco Unified Computing (UCS) E-Series Servers could allow an unauthenticated, local attacker to bypass the BIOS authentication and execute actions as an unprivileged user. | 4.3 |