Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-03 | CVE-2021-41312 | Improper Authentication vulnerability in Atlassian Jira Affected versions of Atlassian Jira Server and Data Center allow a remote attacker who has had their access revoked from Jira Service Management to enable and disable Issue Collectors on Jira Service Management projects via an Improper Authentication vulnerability in the /secure/ViewCollectors endpoint. | 7.5 |
| 2021-10-28 | CVE-2021-22473 | Improper Authentication vulnerability in Huawei Emui and Magic UI There is an Authentication vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality. | 7.5 |
| 2021-10-28 | CVE-2021-22490 | Improper Authentication vulnerability in Huawei Emui and Magic UI There is a Permission verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect the device performance. | 5.3 |
| 2021-10-27 | CVE-2021-32951 | Improper Authentication vulnerability in Advantech Webaccess/Nms 2.0.3/3.0.2 WebAccess/NMS (Versions prior to v3.0.3_Build6299) has an improper authentication vulnerability, which may allow unauthorized users to view resources monitored and controlled by the WebAccess/NMS, as well as IP addresses and names of all the devices managed via WebAccess/NMS. | 5.3 |
| 2021-10-22 | CVE-2020-23058 | Improper Authentication vulnerability in File Explorer Project File Explorer 1.4 An issue in the authentication mechanism in Nong Ge File Explorer v1.4 unauthenticated allows to access sensitive data. | 4.6 |
| 2021-10-18 | CVE-2010-2496 | Improper Authentication vulnerability in Clusterlabs Cluster Glue and Pacemaker stonith-ng in pacemaker and cluster-glue passed passwords as commandline parameters, making it possible for local attackers to gain access to passwords of the HA stack and potentially influence its operations. | 5.5 |
| 2021-10-11 | CVE-2021-37123 | Improper Authentication vulnerability in Huawei Hero-Ct060 Firmware There is an improper authentication vulnerability in Hero-CT060 before 1.0.0.200. | 9.8 |
| 2021-10-06 | CVE-2021-25484 | Improper Authentication vulnerability in Google Android 10.0/11.0/8.1 Improper authentication in InputManagerService prior to SMR Oct-2021 Release 1 allows monitoring the touch event. | 3.3 |
| 2021-10-06 | CVE-2021-0595 | Improper Authentication vulnerability in Google Android In lockAllProfileTasks of RootWindowContainer.java, there is a possible way to access the work profile without the profile PIN, after logging in. | 7.8 |
| 2021-10-05 | CVE-2021-41286 | Improper Authentication vulnerability in Omikron Multicash 4.00.008 Omikron MultiCash Desktop 4.00.008.SP5 relies on a client-side authentication mechanism. | 7.8 |