Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-08 | CVE-2021-30667 | Improper Authentication vulnerability in Apple Iphone OS A logic issue was addressed with improved validation. | 5.4 |
| 2021-09-08 | CVE-2021-30668 | Improper Authentication vulnerability in Apple Macos This issue was addressed with improved checks. | 4.6 |
| 2021-09-08 | CVE-2021-30702 | Improper Authentication vulnerability in Apple mac OS X and Macos A logic issue was addressed with improved state management. | 4.6 |
| 2021-09-08 | CVE-2021-30720 | Improper Authentication vulnerability in Apple products A logic issue was addressed with improved restrictions. | 5.4 |
| 2021-09-08 | CVE-2021-30769 | Improper Authentication vulnerability in Apple Watchos A logic issue was addressed with improved state management. | 5.5 |
| 2021-09-08 | CVE-2021-30770 | Improper Authentication vulnerability in Apple Watchos A logic issue was addressed with improved validation. | 5.5 |
| 2021-09-08 | CVE-2020-11264 | Improper Authentication vulnerability in Qualcomm products Improper authentication of Non-EAPOL/WAPI plaintext frames during four-way handshake can lead to arbitrary network packet injection in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music | 9.8 |
| 2021-09-08 | CVE-2020-11301 | Improper Authentication vulnerability in Qualcomm products Improper authentication of un-encrypted plaintext Wi-Fi frames in an encrypted network can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking | 7.5 |
| 2021-09-02 | CVE-2021-34746 | Improper Authentication vulnerability in Cisco Enterprise NFV Infrastructure Software A vulnerability in the TACACS+ authentication, authorization and accounting (AAA) feature of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an unauthenticated, remote attacker to bypass authentication and log in to an affected device as an administrator. | 9.8 |
| 2021-09-01 | CVE-2021-40350 | Improper Authentication vulnerability in Christiedigital Dwu850-Gs Firmware 06.46 webctrl.cgi.elf on Christie Digital DWU850-GS V06.46 devices allows attackers to perform any desired action via a crafted query containing an unspecified Cookie header. | 9.8 |