Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-19 | CVE-2022-40144 | Improper Authentication vulnerability in Trendmicro Apex ONE 2019 A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacker to bypass the product's login authentication by falsifying request parameters on affected installations. | 9.8 |
| 2022-09-19 | CVE-2022-3218 | Improper Authentication vulnerability in Necta Wifi Mouse Server 1.7.8.5 Due to a reliance on client-side authentication, the WiFi Mouse (Mouse Server) from Necta LLC's authentication mechanism is trivially bypassed, which can result in remote code execution. | 9.8 |
| 2022-09-16 | CVE-2022-39009 | Improper Authentication vulnerability in Huawei Emui and Harmonyos The WLAN module has a vulnerability in permission verification. | 9.8 |
| 2022-09-16 | CVE-2021-42949 | Improper Authentication vulnerability in Digitaldruid Hoteldruid 3.0.3 The component controlla_login function in HotelDruid Hotel Management Software v3.0.3 generates a predictable session token, allowing attackers to bypass authentication via bruteforce attacks. | 9.8 |
| 2022-09-16 | CVE-2022-25652 | Improper Authentication vulnerability in Qualcomm products Cryptographic issues in BSP due to improper hash verification in Snapdragon Wired Infrastructure and Networking | 7.8 |
| 2022-09-14 | CVE-2022-36436 | Improper Authentication vulnerability in Osuosl Twisted VNC Authentication Proxy OSU Open Source Lab VNCAuthProxy through 1.1.1 is affected by an vncap/vnc/protocol.py VNCServerAuthenticator authentication-bypass vulnerability that could allow a malicious actor to gain unauthorized access to a VNC session or to disconnect a legitimate user from a VNC session. | 9.8 |
| 2022-09-13 | CVE-2022-40622 | Improper Authentication vulnerability in Wavlink Wn531G3 Firmware M31G3.V5030.200325 The WAVLINK Quantum D4G (WN531G3) running firmware version M31G3.V5030.200325 uses IP addresses to hold sessions and does not not use session tokens. | 8.8 |
| 2022-09-09 | CVE-2022-38064 | Improper Authentication vulnerability in Openharmony 3.1/3.1.1/3.1.2 OpenHarmony-v3.1.2 and prior versions have a permission bypass vulnerability. | 5.5 |
| 2022-09-09 | CVE-2022-38081 | Improper Authentication vulnerability in Openharmony 3.1/3.1.1/3.1.2 OpenHarmony-v3.1.2 and prior versions have a permission bypass vulnerability. | 5.5 |
| 2022-09-09 | CVE-2022-38700 | Improper Authentication vulnerability in Openharmony 3.1.1 OpenHarmony-v3.1.1 and prior versions have a permission bypass vulnerability. | 8.8 |