Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-12 | CVE-2022-38180 | Improper Authentication vulnerability in Jetbrains Ktor In JetBrains Ktor before 2.1.0 the wrong authentication provider could be selected in some cases | 6.5 |
| 2022-08-10 | CVE-2022-32429 | Improper Authentication vulnerability in Megatech Msnswitch Firmware Mnt.2408 An authentication-bypass issue in the component http://MYDEVICEIP/cgi-bin-sdb/ExportSettings.sh of Mega System Technologies Inc MSNSwitch MNT.2408 allows unauthenticated attackers to arbitrarily configure settings within the application, leading to remote code execution. | 9.8 |
| 2022-08-09 | CVE-2022-29083 | Improper Authentication vulnerability in Dell products Prior Dell BIOS versions contain an Improper Authentication vulnerability. | 6.8 |
| 2022-08-05 | CVE-2022-2303 | Improper Authentication vulnerability in Gitlab An issue has been discovered in GitLab CE/EE affecting all versions before 15.0.5, all versions starting from 15.1 before 15.1.4, all versions starting from 15.2 before 15.2.1. | 4.3 |
| 2022-08-05 | CVE-2022-33720 | Improper Authentication vulnerability in Google Android 10.0/11.0 Improper authentication vulnerability in AppLock prior to SMR Aug-2022 Release 1 allows physical attacker to access Chrome locked by AppLock via new tap shortcut. | 2.4 |
| 2022-08-05 | CVE-2022-36296 | Improper Authentication vulnerability in Jumpdemand Activedemand Broken Authentication vulnerability in JumpDEMAND Inc. | 5.3 |
| 2022-08-05 | CVE-2022-2664 | Improper Authentication vulnerability in Private Cloud Management Platform Project Private Cloud Management Platform A vulnerability classified as critical has been found in Private Cloud Management Platform. | 9.8 |
| 2022-08-04 | CVE-2022-35142 | Improper Authentication vulnerability in Raneto Project Raneto An issue in Renato v0.17.0 allows attackers to cause a Denial of Service (DoS) via a crafted payload injected into the Search parameter. | 7.5 |
| 2022-08-03 | CVE-2022-27484 | Improper Authentication vulnerability in Fortinet Fortiadc A unverified password change in Fortinet FortiADC version 6.2.0 through 6.2.3, 6.1.x, 6.0.x, 5.x.x allows an authenticated attacker to bypass the Old Password check in the password change form via a crafted HTTP request. | 4.3 |
| 2022-07-28 | CVE-2022-2553 | Improper Authentication vulnerability in multiple products The authfile directive in the booth config file is ignored, preventing use of authentication in communications from node to node. | 6.5 |