Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-27 | CVE-2022-34908 | Improper Authentication vulnerability in Aremis 4 Nomads 1.5.0 An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. | 7.5 |
| 2023-02-23 | CVE-2023-20012 | Improper Authentication vulnerability in Cisco products A vulnerability in the CLI console login authentication of Cisco Nexus 9300-FX3 Series Fabric Extender (FEX) when used in UCS Fabric Interconnect deployments could allow an unauthenticated attacker with physical access to bypass authentication. | 4.6 |
| 2023-02-22 | CVE-2023-24093 | Improper Authentication vulnerability in H3C A210-G Firmware A210Gv100R005 An access control issue in H3C A210-G A210-GV100R005 allows attackers to authenticate without a password. | 9.8 |
| 2023-02-16 | CVE-2022-32971 | Improper Authentication vulnerability in Intel System Usage Report Improper authentication in the Intel(R) SUR software before version 2.4.8902 may allow a privileged user to potentially enable escalation of privilege via network access. | 7.2 |
| 2023-02-16 | CVE-2022-33946 | Improper Authentication vulnerability in Intel System Usage Report Improper authentication in the Intel(R) SUR software before version 2.4.8902 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2023-02-16 | CVE-2022-32570 | Improper Authentication vulnerability in Intel Quartus Prime Improper authentication in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2023-02-15 | CVE-2023-23460 | Improper Authentication vulnerability in Priority-Software Priority 19.1.0.68 Priority Web version 19.1.0.68, parameter manipulation on an unspecified end-point may allow authentication bypass. | 9.8 |
| 2023-02-13 | CVE-2022-45724 | Improper Authentication vulnerability in Comfast Cf-Wr610N Firmware 2.3.1 Incorrect Access Control in Comfast router CF-WR6110N V2.3.1 allows a remote attacker on the same network to perform any HTTP request to an unauthenticated page to force the server to generate a SESSION_ID, and using this SESSION_ID an attacker can then perform authenticated requests. | 5.4 |
| 2023-02-09 | CVE-2023-21425 | Improper Authentication vulnerability in Samsung Android 10.0/11.0 Improper access control vulnerability in telecom application prior to SMR JAN-2023 Release 1 allows local attackers to get sensitive information. | 5.5 |
| 2023-02-09 | CVE-2023-21437 | Improper Authentication vulnerability in Samsung Android 10.0/11.0 Improper access control vulnerability in Phone application prior to SMR Feb-2023 Release 1 allows local attackers to access sensitive information via implicit broadcast. | 5.5 |