Vulnerabilities > Missing Authentication for Critical Function
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-08 | CVE-2022-24820 | Missing Authentication for Critical Function vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 5.3 |
| 2022-04-08 | CVE-2021-43483 | Missing Authentication for Critical Function vulnerability in Claro Kaon Cg3000 Firmware 1.00.67 An Access Control vulnerability exists in CLARO KAON CG3000 1.00.67 in the router configuration, which could allow a malicious user to read or update the configuraiton without authentication. | 8.0 |
| 2022-04-07 | CVE-2020-27376 | Missing Authentication for Critical Function vulnerability in Drtrustusa Icheck Connect BP Monitor BP Testing 118 Firmware 1.2.1 Dr Trust USA iCheck Connect BP Monitor BP Testing 118 version 1.2.1 is vulnerable to Missing Authentication. | 8.8 |
| 2022-04-06 | CVE-2022-1248 | Missing Authentication for Critical Function vulnerability in SAP Information System Project SAP Information System 1.0 A vulnerability was found in SAP Information System 1.0 which has been rated as critical. | 7.3 |
| 2022-04-05 | CVE-2022-25245 | Missing Authentication for Critical Function vulnerability in Zohocorp Manageengine Servicedesk Plus Zoho ManageEngine ServiceDesk Plus before 13001 allows anyone to know the organisation's default currency name. | 5.3 |
| 2022-04-04 | CVE-2021-33008 | Missing Authentication for Critical Function vulnerability in Aveva System Platform 2017/2020 AVEVA System Platform versions 2017 through 2020 R2 P01 does not perform any authentication for functionality that requires a provable user identity. | 9.8 |
| 2022-04-01 | CVE-2020-14479 | Missing Authentication for Critical Function vulnerability in Inductiveautomation Ignition Sensitive information can be obtained through the handling of serialized data. | 5.3 |
| 2022-04-01 | CVE-2021-20238 | Missing Authentication for Critical Function vulnerability in Redhat products It was found in OpenShift Container Platform 4 that ignition config, served by the Machine Config Server, can be accessed externally from clusters without authentication. | 3.7 |
| 2022-04-01 | CVE-2022-0922 | Missing Authentication for Critical Function vulnerability in Philips E-Alert Firmware 2.1 The software does not perform any authentication for critical system functionality. | 6.5 |
| 2022-03-30 | CVE-2021-46006 | Missing Authentication for Critical Function vulnerability in Totolink A3100R Firmware 5.9C.4577 In Totolink A3100R V5.9c.4577, "test.asp" contains an API-like function, which is not authenticated. | 6.5 |