Vulnerabilities > Missing Authentication for Critical Function
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-06 | CVE-2022-1248 | Missing Authentication for Critical Function vulnerability in SAP Information System Project SAP Information System 1.0 A vulnerability was found in SAP Information System 1.0 which has been rated as critical. | 7.3 |
| 2022-04-05 | CVE-2022-25245 | Missing Authentication for Critical Function vulnerability in Zohocorp Manageengine Servicedesk Plus Zoho ManageEngine ServiceDesk Plus before 13001 allows anyone to know the organisation's default currency name. | 5.3 |
| 2022-04-04 | CVE-2021-33008 | Missing Authentication for Critical Function vulnerability in Aveva System Platform 2017/2020 AVEVA System Platform versions 2017 through 2020 R2 P01 does not perform any authentication for functionality that requires a provable user identity. | 9.8 |
| 2022-04-01 | CVE-2020-14479 | Missing Authentication for Critical Function vulnerability in Inductiveautomation Ignition Sensitive information can be obtained through the handling of serialized data. | 5.3 |
| 2022-04-01 | CVE-2021-20238 | Missing Authentication for Critical Function vulnerability in Redhat products It was found in OpenShift Container Platform 4 that ignition config, served by the Machine Config Server, can be accessed externally from clusters without authentication. | 3.7 |
| 2022-04-01 | CVE-2022-0922 | Missing Authentication for Critical Function vulnerability in Philips E-Alert Firmware 2.1 The software does not perform any authentication for critical system functionality. | 6.5 |
| 2022-03-30 | CVE-2021-46006 | Missing Authentication for Critical Function vulnerability in Totolink A3100R Firmware 5.9C.4577 In Totolink A3100R V5.9c.4577, "test.asp" contains an API-like function, which is not authenticated. | 6.5 |
| 2022-03-30 | CVE-2021-46009 | Missing Authentication for Critical Function vulnerability in Totolink A3100R Firmware 5.9C.4577 In Totolink A3100R V5.9c.4577, multiple pages can be read by curl or Burp Suite without authentication. | 9.8 |
| 2022-03-30 | CVE-2022-25008 | Missing Authentication for Critical Function vulnerability in Totolink Ex1200T Firmware and Ex300 V2 Firmware totolink EX300_v2 V4.0.3c.140_B20210429 and EX1200T V4.1.2cu.5230_B20210706 does not contain an authentication mechanism. | 8.8 |
| 2022-03-23 | CVE-2021-3589 | Missing Authentication for Critical Function vulnerability in multiple products An authorization flaw was found in Foreman Ansible. | 8.0 |