Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-05 | CVE-2023-3065 | Improper Authentication vulnerability in Mobatime Amxgt 100 1.3.20 Improper Authentication vulnerability in Mobatime mobile application AMXGT100 allows Authentication Bypass.This issue affects Mobatime mobile application AMXGT100 through 1.3.20. | 9.1 |
| 2023-06-02 | CVE-2023-3069 | Improper Authentication vulnerability in Corebos 5.4/5.5/7.0 Unverified Password Change in GitHub repository tsolucio/corebos prior to 8. | 9.8 |
| 2023-06-01 | CVE-2023-3028 | Improper Authentication vulnerability in Hopechart Hqt401 Firmware 201808021036 Insufficient authentication in the MQTT backend (broker) allows an attacker to access and even manipulate the telemetry data of the entire fleet of vehicles using the HopeChart HQT-401 telematics unit. | 9.8 |
| 2023-05-26 | CVE-2023-2283 | Improper Authentication vulnerability in multiple products A vulnerability was found in libssh, where the authentication check of the connecting client can be bypassed in the`pki_verify_data_signature` function in memory allocation problems. | 6.5 |
| 2023-05-26 | CVE-2023-0117 | Improper Authentication vulnerability in Huawei Emui 13.0.0 The online authentication provided by the hwKitAssistant lacks strict identity verification of applications. | 5.3 |
| 2023-05-23 | CVE-2023-25946 | Improper Authentication vulnerability in Qrio Q-Sl2 Firmware 2.0.9 Authentication bypass vulnerability in Qrio Lock (Q-SL2) firmware version 2.0.9 and earlier allows a network-adjacent attacker to analyze the product's communication data and conduct an arbitrary operation under certain conditions. | 8.8 |
| 2023-05-23 | CVE-2023-27388 | Improper Authentication vulnerability in multiple products Improper authentication vulnerability in T&D Corporation and ESPEC MIC CORP. | 9.8 |
| 2023-05-18 | CVE-2023-2024 | Improper Authentication vulnerability in Johnsoncontrols Openblue Enterprise Manager Data Collector Improper authentication in OpenBlue Enterprise Manager Data Collector versions prior to 3.2.5.75 allow access to an unauthorized user under certain circumstances. | 7.5 |
| 2023-05-17 | CVE-2023-0863 | Improper Authentication vulnerability in ABB products Improper Authentication vulnerability in ABB Terra AC wallbox (UL40/80A), ABB Terra AC wallbox (UL32A), ABB Terra AC wallbox (CE) (Terra AC MID), ABB Terra AC wallbox (CE) Terra AC Juno CE, ABB Terra AC wallbox (CE) Terra AC PTB, ABB Terra AC wallbox (CE) Symbiosis, ABB Terra AC wallbox (JP).This issue affects Terra AC wallbox (UL40/80A): from 1.0;0 through 1.5.5; Terra AC wallbox (UL32A) : from 1.0;0 through 1.6.5; Terra AC wallbox (CE) (Terra AC MID): from 1.0;0 through 1.6.5; Terra AC wallbox (CE) Terra AC Juno CE: from 1.0;0 through 1.6.5; Terra AC wallbox (CE) Terra AC PTB : from 1.0;0 through 1.5.25; Terra AC wallbox (CE) Symbiosis: from 1.0;0 through 1.2.7; Terra AC wallbox (JP): from 1.0;0 through 1.6.5. | 8.8 |
| 2023-05-17 | CVE-2023-2706 | Improper Authentication vulnerability in Xootix OTP Login Woocommerce & Gravity Forms The OTP Login Woocommerce & Gravity Forms plugin for WordPress is vulnerable to authentication bypass. | 8.1 |