Vulnerabilities > Missing Authentication for Critical Function
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-16 | CVE-2021-20067 | Missing Authentication for Critical Function vulnerability in Racom M!Dge Firmware 4.4.40.105 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to view sensitive syslog events without authentication. | 5.3 |
| 2021-02-09 | CVE-2020-26192 | Missing Authentication for Critical Function vulnerability in Dell EMC Powerscale Onefs Dell EMC PowerScale OneFS versions 8.2.0 - 9.1.0 contain a privilege escalation vulnerability. | 7.8 |
| 2021-02-09 | CVE-2021-21472 | Missing Authentication for Critical Function vulnerability in SAP Software Provisioning Manager 1.0 SAP Software Provisioning Manager 1.0 (SAP NetWeaver Master Data Management Server 7.1) does not have an option to set password during its installation, this allows an authenticated attacker to perform various security attacks like Directory Traversal, Password Brute force Attack, SMB Relay attack, Security Downgrade. | 8.8 |
| 2021-02-05 | CVE-2020-10537 | Missing Authentication for Critical Function vulnerability in Epikur 20.1.0.1 An issue was discovered in Epikur before 20.1.1. | 7.8 |
| 2021-02-04 | CVE-2020-14245 | Missing Authentication for Critical Function vulnerability in Hcltechsw Onetest Performance HCL OneTest UI V9.5, V10.0, and V10.1 does not perform authentication for functionality that either requires a provable user identity or consumes a significant amount of resources. | 9.8 |
| 2021-02-03 | CVE-2020-29165 | Missing Authentication for Critical Function vulnerability in Rainbowfishsoftware Pacsone Server PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by incorrect access control, which can result in remotely gaining administrator privileges. | 9.8 |
| 2021-02-01 | CVE-2020-15834 | Missing Authentication for Critical Function vulnerability in Mofinetwork Mofi4500-4Gxelte Firmware 4.1.5Std An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.1.5-std devices. | 7.5 |
| 2021-02-01 | CVE-2020-13856 | Missing Authentication for Critical Function vulnerability in Mofinetwork Mofi4500-4Gxelte Firmware 4.0.8Std An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.0.8-std devices. | 7.5 |
| 2021-01-27 | CVE-2021-25312 | Missing Authentication for Critical Function vulnerability in Wisc Htcondor HTCondor before 8.9.11 allows a user to submit a job as another user on the system, because of a flaw in the IDTOKENS authentication method. | 8.8 |
| 2021-01-26 | CVE-2021-22159 | Missing Authentication for Critical Function vulnerability in Proofpoint Insider Threat Management Insider Threat Management Windows Agent Local Privilege Escalation Vulnerability The Proofpoint Insider Threat Management (formerly ObserveIT) Agent for Windows before 7.4.3, 7.5.4, 7.6.5, 7.7.5, 7.8.4, 7.9.3, 7.10.2, and 7.11.0.25 as well as versions 7.3 and earlier is missing authentication for a critical function, which allows a local authenticated Windows user to run arbitrary commands with the privileges of the Windows SYSTEM user. | 7.8 |