Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-29 | CVE-2021-40693 | Improper Authentication vulnerability in Moodle An authentication bypass risk was identified in the external database authentication functionality, due to a type juggling vulnerability. | 6.5 |
| 2022-09-28 | CVE-2022-39255 | Improper Authentication vulnerability in Matrix Software Development KIT Matrix iOS SDK allows developers to build iOS apps compatible with Matrix. | 7.5 |
| 2022-09-28 | CVE-2022-39257 | Improper Authentication vulnerability in Matrix Software Development KIT Matrix iOS SDK allows developers to build iOS apps compatible with Matrix. | 7.5 |
| 2022-09-28 | CVE-2022-39249 | Improper Authentication vulnerability in Matrix Javascript SDK Matrix Javascript SDK is the Matrix Client-Server SDK for JavaScript. | 7.5 |
| 2022-09-28 | CVE-2022-39251 | Improper Authentication vulnerability in Matrix Javascript SDK Matrix Javascript SDK is the Matrix Client-Server SDK for JavaScript. | 7.5 |
| 2022-09-26 | CVE-2022-39219 | Improper Authentication vulnerability in Xbifrost Bifrost Bifrost is a middleware package which can synchronize MySQL/MariaDB binlog data to other types of databases. | 6.5 |
| 2022-09-23 | CVE-2022-30124 | Improper Authentication vulnerability in Rocket.Chat An improper authentication vulnerability exists in Rocket.Chat Mobile App <4.14.1.22788 that allowed an attacker with physical access to a mobile device to bypass local authentication (PIN code). | 6.8 |
| 2022-09-23 | CVE-2022-35248 | Improper Authentication vulnerability in Rocket.Chat A improper authentication vulnerability exists in Rocket.Chat <v5, <v4.8.2 and <v4.7.5 that allowed two factor authentication can be bypassed when telling the server to use CAS during login. | 8.8 |
| 2022-09-20 | CVE-2021-33076 | Improper Authentication vulnerability in Intel products Improper authentication in firmware for some Intel(R) SSD DC Products may allow an unauthenticated user to potentially enable escalation of privilege via physical access. | 6.8 |
| 2022-09-19 | CVE-2022-28321 | Improper Authentication vulnerability in Linux-Pam The Linux-PAM package before 1.5.2-6.1 for openSUSE Tumbleweed allows authentication bypass for SSH logins. | 9.8 |