Vulnerabilities > Missing Authentication for Critical Function
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-25 | CVE-2021-37624 | Missing Authentication for Critical Function vulnerability in Freeswitch FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. | 7.5 |
| 2021-10-22 | CVE-2021-38457 | Missing Authentication for Critical Function vulnerability in Auvesy Versiondog The server permits communication without any authentication procedure, allowing the attacker to initiate a session with the server without providing any form of authentication. | 9.8 |
| 2021-10-08 | CVE-2021-41568 | Missing Authentication for Critical Function vulnerability in TAD web Project TAD web 1.76 Tad Web is vulnerable to authorization bypass, thus remote attackers can exploit the vulnerability to use the original function of viewing bulletin boards and uploading files in the system. | 6.5 |
| 2021-10-08 | CVE-2021-41974 | Missing Authentication for Critical Function vulnerability in TAD Book3 Project TAD Book3 Tad Book3 editing book page does not perform identity verification. | 9.1 |
| 2021-10-08 | CVE-2021-41975 | Missing Authentication for Critical Function vulnerability in Tadtools Project Tadtools TadTools special page is vulnerable to authorization bypass, thus remote attackers can use the specific parameter to delete arbitrary files in the system without logging in. | 9.1 |
| 2021-10-08 | CVE-2021-41976 | Missing Authentication for Critical Function vulnerability in TAD Uploader Project TAD Uploader 3.5.3 Tad Uploader edit book list function is vulnerable to authorization bypass, thus remote attackers can use the function to amend the folder names in the book list without logging in. | 5.3 |
| 2021-10-08 | CVE-2021-35979 | Missing Authentication for Critical Function vulnerability in Digi products An issue was discovered in Digi RealPort through 4.8.488.0. | 8.1 |
| 2021-10-04 | CVE-2021-23858 | Missing Authentication for Critical Function vulnerability in Bosch products Information disclosure: The main configuration, including users and their hashed passwords, is exposed by an unprotected web server resource and can be accessed without authentication. | 7.5 |
| 2021-10-04 | CVE-2021-39879 | Missing Authentication for Critical Function vulnerability in Gitlab Missing authentication in all versions of GitLab CE/EE since version 7.11.0 allows an attacker with access to a victim's session to disable two-factor authentication | 3.5 |
| 2021-09-28 | CVE-2021-41104 | Missing Authentication for Critical Function vulnerability in Esphome Firmware 2021.9.1 ESPHome is a system to control the ESP8266/ESP32. | 7.5 |