Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-12 | CVE-2023-29032 | Improper Authentication vulnerability in Apache Openmeetings An attacker that has gained access to certain private information can use this to act as other user. Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings from 3.1.3 before 7.1.0 | 8.1 |
| 2023-05-12 | CVE-2023-32243 | Improper Authentication vulnerability in Wpdeveloper Essential Addons for Elementor Improper Authentication vulnerability in WPDeveloper Essential Addons for Elementor allows Privilege Escalation. This issue affects Essential Addons for Elementor: from 5.4.0 through 5.7.1. | 9.8 |
| 2023-05-11 | CVE-2023-28325 | Improper Authentication vulnerability in Rocket.Chat An improper authorization vulnerability exists in Rocket.Chat <6.0 that could allow a hacker to manipulate the rid parameter and change the updateMessage method that only checks whether the user is allowed to edit message in the target room. | 6.5 |
| 2023-05-11 | CVE-2023-0858 | Improper Authentication vulnerability in Canon products Improper Authentication of RemoteUI of Office / Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger unauthorized access to the product. | 5.3 |
| 2023-05-10 | CVE-2023-31152 | Improper Authentication vulnerability in Selinc products An Authentication Bypass Using an Alternate Path or Channel vulnerability in the Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) Web Interface allows Authentication Bypass. | 8.8 |
| 2023-05-10 | CVE-2022-41985 | Improper Authentication vulnerability in Weston-Embedded Uc-Ftps 1.98.00 An authentication bypass vulnerability exists in the Authentication functionality of Weston Embedded uC-FTPs v 1.98.00. | 7.5 |
| 2023-05-10 | CVE-2022-44610 | Improper Authentication vulnerability in Intel Data Center Manager Improper authentication in the Intel(R) DCM software before version 5.1 may allow an authenticated user to potentially enable escalation of privilege via network access. | 8.8 |
| 2023-05-10 | CVE-2023-27919 | Improper Authentication vulnerability in Next-Engine Next Engine Integration Authentication bypass vulnerability in NEXT ENGINE Integration Plugin (for EC-CUBE 2.0 series) all versions allows a remote unauthenticated attacker to alter the information stored in the system. | 5.3 |
| 2023-05-08 | CVE-2023-31123 | Improper Authentication vulnerability in Effectindex Tripreporter `effectindex/tripreporter` is a community-powered, universal platform for submitting and analyzing trip reports. | 9.1 |
| 2023-05-08 | CVE-2023-31127 | Improper Authentication vulnerability in Dmtf Libspdm libspdm is a sample implementation that follows the DMTF SPDM specifications. | 8.8 |