Vulnerabilities > Missing Authentication for Critical Function
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-30 | CVE-2022-23719 | Missing Authentication for Critical Function vulnerability in Pingidentity Pingid Integration for Windows Login PingID Windows Login prior to 2.8 does not authenticate communication with a local Java service used to capture security key requests. | 6.4 |
| 2022-06-29 | CVE-2022-29270 | Missing Authentication for Critical Function vulnerability in Nagios XI In Nagios XI through 5.8.5, it is possible for a user without password verification to change his e-mail address. | 4.3 |
| 2022-06-29 | CVE-2022-31266 | Missing Authentication for Critical Function vulnerability in Ilias In ILIAS through 7.10, lack of verification when changing an email address (on the Profile Page) allows remote attackers to take over accounts. | 4.3 |
| 2022-06-16 | CVE-2022-24562 | Missing Authentication for Critical Function vulnerability in Iobit Iotransfer 4.3.1.1561 In IOBit IOTransfer 4.3.1.1561, an unauthenticated attacker can send GET and POST requests to Airserv and gain arbitrary read/write access to the entire file-system (with admin privileges) on the victim's endpoint, which can result in data theft and remote code execution. | 9.8 |
| 2022-06-15 | CVE-2021-41418 | Missing Authentication for Critical Function vulnerability in Ariang Project Ariang AriaNg v0.1.0~v1.2.2 is affected by an incorrect access control vulnerability through not authenticating visitors' access rights. | 9.8 |
| 2022-06-15 | CVE-2022-32157 | Missing Authentication for Critical Function vulnerability in Splunk Splunk Enterprise deployment servers in versions before 9.0 allow unauthenticated downloading of forwarder bundles. | 7.5 |
| 2022-06-14 | CVE-2022-32557 | Missing Authentication for Critical Function vulnerability in Couchbase Server An issue was discovered in Couchbase Server before 7.0.4. | 7.5 |
| 2022-06-14 | CVE-2022-30230 | Missing Authentication for Critical Function vulnerability in Siemens Sicam Gridedge Essential A vulnerability has been identified in SICAM GridEdge Essential ARM (All versions < V2.6.6), SICAM GridEdge Essential Intel (All versions < V2.6.6), SICAM GridEdge Essential with GDS ARM (All versions < V2.6.6), SICAM GridEdge Essential with GDS Intel (All versions < V2.6.6). | 9.8 |
| 2022-06-14 | CVE-2022-32251 | Missing Authentication for Critical Function vulnerability in Siemens Sinema Remote Connect Server A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). | 9.8 |
| 2022-06-08 | CVE-2022-1598 | Missing Authentication for Critical Function vulnerability in 2Code Wpqa Builder 5.2 The WPQA Builder WordPress plugin before 5.5 which is a companion to the Discy and Himer , lacks authentication in a REST API endpoint, allowing unauthenticated users to discover private questions sent between users on the site. | 5.3 |