Vulnerabilities > Improper Authentication

DATE	CVE	VULNERABILITY TITLE	RISK
2021-04-16	CVE-2021-26074	Improper Authentication vulnerability in Atlassian Connect Spring Boot Broken Authentication in Atlassian Connect Spring Boot (ACSB) from version 1.1.0 before version 2.1.3: Atlassian Connect Spring Boot is a Java Spring Boot package for building Atlassian Connect apps. network low complexity atlassian CWE-287	6.5
2021-04-16	CVE-2021-26073	Improper Authentication vulnerability in Atlassian Connect Express Broken Authentication in Atlassian Connect Express (ACE) from version 3.0.2 before version 6.6.0: Atlassian Connect Express is a Node.js package for building Atlassian Connect apps. network low complexity atlassian CWE-287	7.7
2021-04-15	CVE-2021-20288	Improper Authentication vulnerability in multiple products An authentication flaw was found in ceph in versions before 14.2.20. network low complexity linuxfoundation redhat fedoraproject debian CWE-287	7.2
2021-04-14	CVE-2021-27990	Improper Authentication vulnerability in Appspace 6.2.4 Appspace 6.2.4 is vulnerable to a broken authentication mechanism where pages such as /medianet/mail.aspx can be called directly and the framework is exposed with layouts, menus and functionalities. network low complexity appspace CWE-287	7.5
2021-04-13	CVE-2021-21399	Improper Authentication vulnerability in Ampache Ampache is a web based audio/video streaming application and file manager. network low complexity ampache CWE-287	7.5
2021-04-12	CVE-2021-22497	Improper Authentication vulnerability in Microfocus Netiq Advanced Authentication Advanced Authentication versions prior to 6.3 SP4 have a potential broken authentication due to improper session management issue. network low complexity microfocus CWE-287	7.2
2021-04-10	CVE-2021-20020	Improper Authentication vulnerability in Sonicwall Global Management System 9.3 A command execution vulnerability in SonicWall GMS 9.3 allows a remote unauthenticated attacker to locally escalate privilege to root. network low complexity sonicwall CWE-287 critical	9.8
2021-04-08	CVE-2021-22507	Improper Authentication vulnerability in Microfocus Operations Bridge Manager Authentication bypass vulnerability in Micro Focus Operations Bridge Manager affects versions 2019.05, 2019.11, 2020.05 and 2020.10. network low complexity microfocus CWE-287 critical	9.8
2021-04-08	CVE-2021-27522	Improper Authentication vulnerability in Learnsite Project Learnsite 1.2.5.0 Learnsite 1.2.5.0 contains a remote privilege escalation vulnerability in /Manager/index.aspx through the JudgIsAdmin() function. network low complexity learnsite-project CWE-287	8.8
2021-04-08	CVE-2021-28174	Improper Authentication vulnerability in Mitake Smart Stock Selection 20200623 Mitake smart stock selection system contains a broken authentication vulnerability. network low complexity mitake CWE-287	6.5

Vulnerabilities > Improper Authentication {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Improper Authentication"}]}

Vulnerabilities > Improper Authentication