Vulnerabilities > Missing Authentication for Critical Function

DATE	CVE	VULNERABILITY TITLE	RISK
2017-06-09	CVE-2016-7830	Missing Authentication for Critical Function vulnerability in Sony products Sony PCS-XG100, PCS-XG100S, PCS-XG100C, PCS-XG77, PCS-XG77S, PCS-XG77C devices with firmware versions prior to Ver.1.51 and PCS-XC1 devices with firmware version prior to Ver.1.22 allow an attacker on the same network segment to bypass authentication to perform administrative operations via unspecified vectors. low complexity sony CWE-306	8.8
2017-04-10	CVE-2016-5053	Missing Authentication for Critical Function vulnerability in Osram Lightify Home 1.6.1 OSRAM SYLVANIA Osram Lightify Home before 2016-07-26 allows remote attackers to execute arbitrary commands via TCP port 4000. network low complexity osram CWE-306 critical	9.8
2017-04-10	CVE-2015-2888	Missing Authentication for Critical Function vulnerability in Summerinfant Baby Zoom Wifi Monitor Firmware Summer Baby Zoom Wifi Monitor & Internet Viewing System allows remote attackers to bypass authentication, related to the MySnapCam web service. network low complexity summerinfant CWE-306 critical	9.8
2017-03-15	CVE-2017-3819	Missing Authentication for Critical Function vulnerability in Cisco ASR 5000 Series Software and Virtualized Packet Core A privilege escalation vulnerability in the Secure Shell (SSH) subsystem in the StarOS operating system for Cisco ASR 5000 Series, ASR 5500 Series, ASR 5700 Series devices, and Cisco Virtualized Packet Core could allow an authenticated, remote attacker to gain unrestricted, root shell access. network low complexity cisco CWE-306	8.8
2017-03-02	CVE-2017-6409	Missing Authentication for Critical Function vulnerability in Veritas Netbackup and Netbackup Appliance An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. network low complexity veritas CWE-306 critical	9.8
2017-02-13	CVE-2016-8355	Missing Authentication for Critical Function vulnerability in Smiths-Medical Cadd-Solis Medication Safety Software An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. network low complexity smiths-medical CWE-306 critical	9.9
2017-02-13	CVE-2017-5162	Missing Authentication for Critical Function vulnerability in Binom3 Universal Multifunctional Electric Power Quality Meter Firmware An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. network low complexity binom3 CWE-306 critical	9.8
2016-04-21	CVE-2016-2004	Missing Authentication for Critical Function vulnerability in HP Data Protector HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allow remote attackers to execute arbitrary code via unspecified vectors related to lack of authentication. network low complexity hp CWE-306 critical	9.8
2009-06-08	CVE-2008-6827	Missing Authentication for Critical Function vulnerability in Symantec Altiris Deployment Solution The ListView control in the Client GUI (AClient.exe) in Symantec Altiris Deployment Solution 6.x before 6.9.355 SP1 allows local users to gain SYSTEM privileges and execute arbitrary commands via a "Shatter" style attack on the "command prompt" hidden GUI button to (1) overwrite the CommandLine parameter to cmd.exe to use SYSTEM privileges and (2) modify the DLL that is loaded using the LoadLibrary API function. local low complexity symantec CWE-306	7.8
2004-08-06	CVE-2004-0213	Missing Authentication for Critical Function vulnerability in Microsoft Windows 2000 Utility Manager in Windows 2000 launches winhlp32.exe while Utility Manager is running with raised privileges, which allows local users to gain system privileges via a "Shatter" style attack that sends a Windows message to cause Utility Manager to launch winhlp32 by directly accessing the context sensitive help and bypassing the GUI, then sending another message to winhlp32 in order to open a user-selected file, a different vulnerability than CVE-2003-0908. local low complexity microsoft CWE-306	7.8