Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-15 | CVE-2022-38368 | Improper Authentication vulnerability in Aviatrix Gateway An issue was discovered in Aviatrix Gateway before 6.6.5712 and 6.7.x before 6.7.1376. | 8.8 |
| 2022-08-15 | CVE-2022-36524 | Improper Authentication vulnerability in Dlink Go-Rt-Ac750 Firmware 101B03/200B02 D-Link GO-RT-AC750 GORTAC750_revA_v101b03 & GO-RT-AC750_revB_FWv200b02 is vulnerable to Static Default Credentials via /etc/init0.d/S80telnetd.sh. | 7.5 |
| 2022-08-12 | CVE-2022-37397 | Improper Authentication vulnerability in Yugabyte Yugabytedb 2.6.1 An issue was discovered in the YugabyteDB 2.6.1 when using LDAP-based authentication in YCQL with Microsoft’s Active Directory. | 9.8 |
| 2022-08-12 | CVE-2022-2503 | Improper Authentication vulnerability in Linux Kernel Dm-verity is used for extending root-of-trust to root filesystems. | 6.7 |
| 2022-08-12 | CVE-2022-38180 | Improper Authentication vulnerability in Jetbrains Ktor In JetBrains Ktor before 2.1.0 the wrong authentication provider could be selected in some cases | 6.5 |
| 2022-08-10 | CVE-2022-32429 | Improper Authentication vulnerability in Megatech Msnswitch Firmware Mnt.2408 An authentication-bypass issue in the component http://MYDEVICEIP/cgi-bin-sdb/ExportSettings.sh of Mega System Technologies Inc MSNSwitch MNT.2408 allows unauthenticated attackers to arbitrarily configure settings within the application, leading to remote code execution. | 9.8 |
| 2022-08-09 | CVE-2022-29083 | Improper Authentication vulnerability in Dell products Prior Dell BIOS versions contain an Improper Authentication vulnerability. | 6.8 |
| 2022-08-05 | CVE-2022-2303 | Improper Authentication vulnerability in Gitlab An issue has been discovered in GitLab CE/EE affecting all versions before 15.0.5, all versions starting from 15.1 before 15.1.4, all versions starting from 15.2 before 15.2.1. | 4.3 |
| 2022-08-05 | CVE-2022-33720 | Improper Authentication vulnerability in Google Android 10.0/11.0 Improper authentication vulnerability in AppLock prior to SMR Aug-2022 Release 1 allows physical attacker to access Chrome locked by AppLock via new tap shortcut. | 2.4 |
| 2022-08-04 | CVE-2022-35142 | Improper Authentication vulnerability in Raneto Project Raneto An issue in Renato v0.17.0 allows attackers to cause a Denial of Service (DoS) via a crafted payload injected into the Search parameter. | 7.5 |