Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-15 | CVE-2023-4985 | Improper Authentication vulnerability in Supcon Inplant Scada 20230901 A vulnerability classified as critical has been found in Supcon InPlant SCADA up to 20230901. | 7.8 |
| 2023-09-14 | CVE-2023-4669 | Improper Authentication vulnerability in Exagate Sysguard 3001 Firmware Authentication Bypass by Assumed-Immutable Data vulnerability in Exagate SYSGuard 3001 allows Authentication Bypass.This issue affects SYSGuard 3001: before 3.2.20.0. | 9.8 |
| 2023-09-13 | CVE-2023-4568 | Improper Authentication vulnerability in Papercut NG PaperCut NG allows for unauthenticated XMLRPC commands to be run by default. | 6.5 |
| 2023-09-12 | CVE-2023-39215 | Improper Authentication vulnerability in Zoom Meeting Software Development KIT and Zoom Improper authentication in Zoom clients may allow an authenticated user to conduct a denial of service via network access. | 6.5 |
| 2023-09-12 | CVE-2023-4501 | Improper Authentication vulnerability in Microfocus products User authentication with username and password credentials is ineffective in OpenText (Micro Focus) Visual COBOL, COBOL Server, Enterprise Developer, and Enterprise Server (including product variants such as Enterprise Test Server), versions 7.0 patch updates 19 and 20, 8.0 patch updates 8 and 9, and 9.0 patch update 1, when LDAP-based authentication is used with certain configurations. | 9.8 |
| 2023-09-12 | CVE-2023-29463 | Improper Authentication vulnerability in Rockwellautomation Pavilion8 The JMX Console within the Rockwell Automation Pavilion8 is exposed to application users and does not require authentication. | 5.4 |
| 2023-09-11 | CVE-2023-39069 | Improper Authentication vulnerability in Strangebee Cortex and Thehive An issue in StrangeBee TheHive v.5.0.8, v.4.1.21 and Cortex v.3.1.6 allows a remote attacker to gain privileges via Active Directory authentication mechanism. | 9.8 |
| 2023-09-11 | CVE-2023-4816 | Improper Authentication vulnerability in Hitachienergy Asset Suite A vulnerability exists in the Equipment Tag Out authentication, when configured with Single Sign-On (SSO) with password validation in T214. | 8.8 |
| 2023-09-08 | CVE-2021-27715 | Improper Authentication vulnerability in Mofinetwork Mofi4500-4Gxelte-V2 Firmware 3.5.6Xnet5052 An issue was discovered in MoFi Network MOFI4500-4GXeLTE-V2 3.5.6-xnet-5052 allows attackers to bypass the authentication and execute arbitrary code via crafted HTTP request. | 9.8 |
| 2023-09-06 | CVE-2023-4498 | Improper Authentication vulnerability in Tenda N300 Firmware 53.0.1.6 Tenda N300 Wireless N VDSL2 Modem Router allows unauthenticated access to pages that in turn should be accessible to authenticated users only | 5.3 |