Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-04 | CVE-2023-43793 | Improper Authentication vulnerability in Misskey Misskey is an open source, decentralized social media platform. | 7.5 |
| 2023-10-04 | CVE-2023-43805 | Improper Authentication vulnerability in Nexryai Nexkey 12.23Q4.4/12.23Q4.5 Nexkey is a fork of Misskey, an open source, decentralized social media platform. | 7.5 |
| 2023-10-04 | CVE-2023-43809 | Improper Authentication vulnerability in Charm Soft Serve Soft Serve is a self-hostable Git server for the command line. | 7.5 |
| 2023-10-04 | CVE-2021-3784 | Improper Authentication vulnerability in Garudalinux Garuda Linux Garuda Linux performs an insecure user creation and authentication that allows any user to impersonate the created account. | 7.0 |
| 2023-10-04 | CVE-2023-40376 | Improper Authentication vulnerability in IBM Urbancode Deploy IBM UrbanCode Deploy (UCD) 7.1 - 7.1.2.12, 7.2 through 7.2.3.5, and 7.3 through 7.3.2.0 under certain configurations could allow an authenticated user to make changes to environment variables due to improper authentication controls. | 6.5 |
| 2023-10-03 | CVE-2023-28540 | Improper Authentication vulnerability in Qualcomm products Cryptographic issue in Data Modem due to improper authentication during TLS handshake. | 7.5 |
| 2023-10-03 | CVE-2023-26150 | Improper Authentication vulnerability in Freeopcua Opcua-Asyncio Versions of the package asyncua before 0.9.96 are vulnerable to Improper Authentication such that it is possible to access Address Space without encryption and authentication. **Note:** This issue is a result of missing checks for services that require an active session. | 7.5 |
| 2023-10-03 | CVE-2023-42771 | Improper Authentication vulnerability in Furunosystems Acera 1310 Firmware and Acera 1320 Firmware Authentication bypass vulnerability in ACERA 1320 firmware ver.01.26 and earlier, and ACERA 1310 firmware ver.01.26 and earlier allows a network-adjacent unauthenticated attacker who can access the affected product to download configuration files and/or log files, and upload configuration files and/or firmware. | 8.8 |
| 2023-10-02 | CVE-2023-5328 | Improper Authentication vulnerability in Sato Cl4Nx-J Plus Firmware 1.13.2U455R2 A vulnerability classified as critical has been found in SATO CL4NX-J Plus 1.13.2-u455_r2. | 8.8 |
| 2023-10-02 | CVE-2023-5329 | Improper Authentication vulnerability in F-Logic Datacube4 Firmware 20231001 A vulnerability classified as problematic was found in Field Logic DataCube4 up to 20231001. | 7.5 |