Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-04 | CVE-2022-23600 | Improper Authentication vulnerability in Fleetdm Fleet fleet is an open source device management, built on osquery. | 6.5 |
| 2022-02-04 | CVE-2022-24259 | Improper Authentication vulnerability in Voipmonitor An incorrect check in the component cdr.php of Voipmonitor GUI before v24.96 allows unauthenticated attackers to escalate privileges via a crafted request. | 9.8 |
| 2022-01-28 | CVE-2021-40404 | Improper Authentication vulnerability in Reolink Rlc-410W Firmware 3.0.0.13620121102 An authentication bypass vulnerability exists in the cgiserver.cgi Login functionality of reolink RLC-410W v3.0.0.136_20121102. | 6.5 |
| 2022-01-25 | CVE-2021-3850 | Improper Authentication vulnerability in multiple products Authentication Bypass by Primary Weakness in GitHub repository adodb/adodb prior to 5.20.21. | 9.1 |
| 2022-01-24 | CVE-2021-43394 | Improper Authentication vulnerability in Unisys Messaging Integration Services Unisys OS 2200 Messaging Integration Services (NTSI) 7R3B IC3 and IC4, 7R3C, and 7R3D has an Incorrect Implementation of an Authentication Algorithm. | 9.8 |
| 2022-01-24 | CVE-2022-23126 | Improper Authentication vulnerability in Teslamate Project Teslamate TeslaMate before 1.25.1 (when using the default Docker configuration) allows attackers to open doors of Tesla vehicles, start Keyless Driving, and interfere with vehicle operation en route. | 9.8 |
| 2022-01-22 | CVE-2022-23807 | Improper Authentication vulnerability in PHPmyadmin An issue was discovered in phpMyAdmin 4.9 before 4.9.8 and 5.1 before 5.1.2. | 4.3 |
| 2022-01-21 | CVE-2021-23196 | Improper Authentication vulnerability in Fresenius-Kabi products The web application on Agilia Link+ version 3.0 implements authentication and session management mechanisms exclusively on the client-side and does not protect authentication attributes sufficiently. | 9.8 |
| 2022-01-21 | CVE-2021-43355 | Improper Authentication vulnerability in Fresenius-Kabi products Fresenius Kabi Vigilant Software Suite (Mastermed Dashboard) version 2.0.1.3 allows user input to be validated on the client side without authentication by the server. | 9.8 |
| 2022-01-21 | CVE-2020-4879 | Improper Authentication vulnerability in IBM Cognos Controller 10.4.0/10.4.1/10.4.2 IBM Cognos Controller 10.4.0, 10.4.1, and 10.4.2 could allow a remote attacker to bypass security restrictions, caused by improper validation of authentication cookies. | 9.8 |