Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-06 | CVE-2021-43931 | Improper Authentication vulnerability in Webhmi Firmware 3.5/4.0 The authentication algorithm of the WebHMI portal is sound, but the implemented mechanism can be bypassed as the result of a separate weakness that is primary to the authentication error. | 9.8 |
| 2021-11-23 | CVE-2021-35033 | Improper Authentication vulnerability in Zyxel products A vulnerability in specific versions of Zyxel NBG6818, NBG7815, WSQ20, WSQ50, WSQ60, and WSR30 firmware with pre-configured password management could allow an attacker to obtain root access of the device, if the local attacker dismantles the device and uses a USB-to-UART cable to connect the device, or if the remote assistance feature had been enabled by an authenticated user. | 7.8 |
| 2021-11-22 | CVE-2021-38376 | Improper Authentication vulnerability in Open-Xchange OX APP Suite 7.10.5 OX App Suite through 7.10.5 has Incorrect Access Control for retrieval of session information via the rampup action of the login API call. | 5.3 |
| 2021-11-20 | CVE-2021-36308 | Improper Authentication vulnerability in Dell Networking Os10 Networking OS10, versions prior to October 2021 with Smart Fabric Services enabled, contains an authentication bypass vulnerability. | 9.8 |
| 2021-11-17 | CVE-2021-0096 | Improper Authentication vulnerability in Intel products Improper authentication in the software installer for the Intel(R) NUC HDMI Firmware Update Tool for NUC7i3DN, NUC7i5DN, NUC7i7DN before version 1.78.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2021-11-17 | CVE-2021-33087 | Improper Authentication vulnerability in Intel NUC M15 Laptop KIT Management Engine Driver Pack Improper authentication in the installer for the Intel(R) NUC M15 Laptop Kit Management Engine driver pack before version 15.0.10.1508 may allow an authenticated user to potentially enable denial of service via local access. | 5.5 |
| 2021-11-16 | CVE-2021-37580 | Improper Authentication vulnerability in Apache Shenyu 2.3.0/2.4.0 A flaw was found in Apache ShenYu Admin. | 9.8 |
| 2021-11-12 | CVE-2021-3519 | Improper Authentication vulnerability in Lenovo products A vulnerability was reported in some Lenovo Desktop models that could allow unauthorized access to the boot menu, when the "BIOS Password At Boot Device List" BIOS setting is Yes. | 6.8 |
| 2021-11-12 | CVE-2021-3788 | Improper Authentication vulnerability in Binatoneglobal products An exposed debug interface was reported in some Motorola-branded Binatone Hubble Cameras that could allow an attacker with physical access unauthorized access to the device. | 6.8 |
| 2021-11-09 | CVE-2021-43203 | Improper Authentication vulnerability in Jetbrains Ktor In JetBrains Ktor before 1.6.4, nonce verification during the OAuth2 authentication process is implemented improperly. | 7.5 |