Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-29 | CVE-2018-8902 | Improper Authentication vulnerability in Ivanti Avalanche An issue was discovered in Ivanti Avalanche for all versions between 5.3 and 6.2. | 6.5 |
| 2018-06-29 | CVE-2018-12984 | Improper Authentication vulnerability in Hycus CMS Project Hycus CMS 1.0.4 Hycus CMS 1.0.4 allows Authentication Bypass via "'=' 'OR'" credentials. | 9.8 |
| 2018-06-26 | CVE-2018-6667 | Improper Authentication vulnerability in Mcafee web Gateway Authentication Bypass vulnerability in the administrative user interface in McAfee Web Gateway 7.8.1.0 through 7.8.1.5 allows remote attackers to execute arbitrary code via Java management extensions (JMX). | 9.8 |
| 2018-06-21 | CVE-2018-12613 | Improper Authentication vulnerability in PHPmyadmin 4.8.0/4.8.0.1/4.8.1 An issue was discovered in phpMyAdmin 4.8.x before 4.8.2, in which an attacker can include (view and potentially execute) files on the server. | 8.8 |
| 2018-06-21 | CVE-2018-0362 | Improper Authentication vulnerability in Cisco products A vulnerability in BIOS authentication management of Cisco 5000 Series Enterprise Network Compute System and Cisco Unified Computing (UCS) E-Series Servers could allow an unauthenticated, local attacker to bypass the BIOS authentication and execute actions as an unprivileged user. | 4.3 |
| 2018-06-20 | CVE-2018-12446 | Improper Authentication vulnerability in Dropbox 98.2.2 An issue was discovered in the com.dropbox.android application 98.2.2 for Android. | 3.6 |
| 2018-06-20 | CVE-2018-12445 | Improper Authentication vulnerability in Dropbox 98.2.2 An issue was discovered in the com.dropbox.android application 98.2.2 for Android. | 3.1 |
| 2018-06-18 | CVE-2018-9024 | Improper Authentication vulnerability in Broadcom Privileged Access Manager An improper authentication vulnerability in CA Privileged Access Manager 2.x allows attackers to spoof IP addresses in a log file. | 5.3 |
| 2018-06-15 | CVE-2018-1085 | Improper Authentication vulnerability in Redhat Openshift Container Platform openshift-ansible before versions 3.9.23, 3.7.46 deploys a misconfigured etcd file that causes the SSL client certificate authentication to be disabled. | 9.8 |
| 2018-06-13 | CVE-2018-12271 | Improper Authentication vulnerability in Dropbox 100.2 An issue was discovered in the com.getdropbox.Dropbox app 100.2 for iOS. | 6.4 |