Vulnerabilities > Missing Authentication for Critical Function
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-26 | CVE-2022-22576 | Missing Authentication for Critical Function vulnerability in multiple products An improper authentication vulnerability exists in curl 7.33.0 to and including 7.82.0 which might allow reuse OAUTH2-authenticated connections without properly making sure that the connection was authenticated with the same credentials as set for this transfer. | 8.1 |
| 2022-05-25 | CVE-2022-26026 | Missing Authentication for Critical Function vulnerability in Openautomationsoftware OAS Platform 16.00.0112 A denial of service vulnerability exists in the OAS Engine SecureConfigValues functionality of Open Automation Software OAS Platform V16.00.0112. | 7.5 |
| 2022-05-25 | CVE-2022-26043 | Missing Authentication for Critical Function vulnerability in Openautomationsoftware OAS Platform 16.00.0112 An external config control vulnerability exists in the OAS Engine SecureAddSecurity functionality of Open Automation Software OAS Platform V16.00.0112. | 7.5 |
| 2022-05-25 | CVE-2022-26067 | Missing Authentication for Critical Function vulnerability in Openautomationsoftware OAS Platform 16.00.0112 An information disclosure vulnerability exists in the OAS Engine SecureTransferFiles functionality of Open Automation Software OAS Platform V16.00.0112. | 7.5 |
| 2022-05-25 | CVE-2022-26082 | Missing Authentication for Critical Function vulnerability in Openautomationsoftware OAS Platform 16.00.0112 A file write vulnerability exists in the OAS Engine SecureTransferFiles functionality of Open Automation Software OAS Platform V16.00.0112. | 9.8 |
| 2022-05-25 | CVE-2022-26303 | Missing Authentication for Critical Function vulnerability in Openautomationsoftware OAS Platform 16.00.0112 An external config control vulnerability exists in the OAS Engine SecureAddUser functionality of Open Automation Software OAS Platform V16.00.0112. | 7.5 |
| 2022-05-25 | CVE-2022-26833 | Missing Authentication for Critical Function vulnerability in Openautomationsoftware OAS Platform 16.00.0112 An improper authentication vulnerability exists in the REST API functionality of Open Automation Software OAS Platform V16.00.0121. | 9.4 |
| 2022-05-25 | CVE-2022-27169 | Missing Authentication for Critical Function vulnerability in Openautomationsoftware OAS Platform 16.00.0112 An information disclosure vulnerability exists in the OAS Engine SecureBrowseFile functionality of Open Automation Software OAS Platform V16.00.0112. | 7.5 |
| 2022-05-25 | CVE-2022-29402 | Missing Authentication for Critical Function vulnerability in Tp-Link Tl-Wr840N Firmware TP-Link TL-WR840N EU v6.20 was discovered to contain insecure protections for its UART console. | 6.8 |
| 2022-05-24 | CVE-2022-22309 | Missing Authentication for Critical Function vulnerability in IBM Power System S922 Firmware The POWER systems FSP is vulnerable to unauthenticated logins through the serial port/TTY interface. | 6.8 |