Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-26 | CVE-2021-3632 | Improper Authentication vulnerability in Redhat Keycloak and Single Sign-On A flaw was found in Keycloak. | 7.5 |
| 2022-08-25 | CVE-2021-3979 | Improper Authentication vulnerability in multiple products A key length flaw was found in Red Hat Ceph Storage. | 6.5 |
| 2022-08-25 | CVE-2022-2031 | Improper Authentication vulnerability in Samba A flaw was found in Samba. | 8.8 |
| 2022-08-23 | CVE-2021-3827 | Improper Authentication vulnerability in Redhat Keycloak and Single Sign-On A flaw was found in keycloak, where the default ECP binding flow allows other authentication flows to be bypassed. | 6.8 |
| 2022-08-23 | CVE-2022-35726 | Improper Authentication vulnerability in Yotuwp Video Gallery Broken Authentication vulnerability in yotuwp Video Gallery plugin <= 1.3.4.5 at WordPress. | 9.8 |
| 2022-08-23 | CVE-2022-35203 | Improper Authentication vulnerability in Trendnet Tv-Ip572Pi Firmware 1.0 An access control issue in TrendNet TV-IP572PI v1.0 allows unauthenticated attackers to access sensitive system information. | 7.2 |
| 2022-08-23 | CVE-2022-34919 | Improper Authentication vulnerability in Zengenti Contensis The file upload wizard in Zengenti Contensis Classic before 15.2.1.79 does not correctly check that a user has authenticated. | 9.8 |
| 2022-08-22 | CVE-2022-32282 | Improper Authentication vulnerability in Wwbn Avideo 11.6 An improper password check exists in the login functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. | 8.8 |
| 2022-08-18 | CVE-2022-22730 | Improper Authentication vulnerability in Intel Edge Insights for Industrial Improper authentication in the Intel(R) Edge Insights for Industrial software before version 2.6.1 may allow an unauthenticated user to potentially enable escalation of privilege via network access. | 9.8 |
| 2022-08-18 | CVE-2022-35198 | Improper Authentication vulnerability in Contract Management System Project Contract Managment System 2.0 Contract Management System v2.0 contains a weak default password which gives attackers to access database connection information. | 7.5 |