Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-04 | CVE-2017-3775 | Improper Authentication vulnerability in Lenovo products Some Lenovo System x server BIOS/UEFI versions, when Secure Boot mode is enabled by a system administrator, do not properly authenticate signed code before booting it. | 6.4 |
| 2018-05-04 | CVE-2018-10641 | Improper Authentication vulnerability in Dlink Dir-601 Firmware 1.02Na D-Link DIR-601 A1 1.02NA devices do not require the old password for a password change, which occurs in cleartext. | 8.1 |
| 2018-05-04 | CVE-2018-10561 | Improper Authentication vulnerability in Dasannetworks Gpon Router Firmware An issue was discovered on Dasan GPON home routers. | 9.8 |
| 2018-05-02 | CVE-2018-0247 | Improper Authentication vulnerability in Cisco products A vulnerability in Web Authentication (WebAuth) clients for the Cisco Wireless LAN Controller (WLC) and Aironet Access Points running Cisco IOS Software could allow an unauthenticated, adjacent attacker to bypass authentication and pass traffic. | 4.7 |
| 2018-05-02 | CVE-2018-10544 | Improper Authentication vulnerability in Meross Mss110 Firmware 1.1.24 Meross MSS110 devices through 1.1.24 contain an unauthenticated admin.htm administrative interface. | 9.8 |
| 2018-05-01 | CVE-2018-9232 | Improper Authentication vulnerability in Twsz Be126 Firmware Due to the lack of firmware authentication in the upgrade process of T&W WIFI Repeater BE126 devices, an attacker can craft a malicious firmware and use it as an update. | 7.8 |
| 2018-04-30 | CVE-2018-10576 | Improper Authentication vulnerability in Watchguard Ap100 Firmware, Ap102 Firmware and Ap200 Firmware An issue was discovered on WatchGuard AP100, AP102, and AP200 devices with firmware before 1.2.9.15. | 7.8 |
| 2018-04-26 | CVE-2018-1418 | Improper Authentication vulnerability in IBM Qradar Security Information and Event Manager IBM Security QRadar SIEM 7.2 and 7.3 could allow a user to bypass authentication which could lead to code execution. | 8.8 |
| 2018-04-25 | CVE-2017-12712 | Improper Authentication vulnerability in Abbott products The authentication algorithm in Abbott Laboratories pacemakers manufactured prior to Aug 28, 2017, which involves an authentication key and time stamp, can be compromised or bypassed, which may allow a nearby attacker to issue unauthorized commands to the pacemaker via RF communications. | 8.8 |
| 2018-04-25 | CVE-2018-10362 | Improper Authentication vulnerability in PHPliteadmin An issue was discovered in phpLiteAdmin 1.9.5 through 1.9.7.1. | 9.8 |