Vulnerabilities > Missing Authentication for Critical Function
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-23 | CVE-2021-42783 | Missing Authentication for Critical Function vulnerability in Dlink Dwr-932C E1 Firmware Missing Authentication for Critical Function vulnerability in debug_post_set.cgi of D-Link DWR-932C E1 firmware allows an unauthenticated attacker to execute administrative actions. | 9.8 |
| 2021-11-15 | CVE-2021-41266 | Missing Authentication for Critical Function vulnerability in MIN Minio Console Minio console is a graphical user interface for the for MinIO operator. | 9.8 |
| 2021-11-01 | CVE-2021-20136 | Missing Authentication for Critical Function vulnerability in Zohocorp Manageengine Log360 ManageEngine Log360 Builds < 5235 are affected by an improper access control vulnerability allowing database configuration overwrite. | 9.8 |
| 2021-10-31 | CVE-2021-33259 | Missing Authentication for Critical Function vulnerability in D-Link Dir-868Lw Firmware 1.12B Several web interfaces in D-Link DIR-868LW 1.12b have no authentication requirements for access, allowing for attackers to obtain users' DNS query history. | 5.3 |
| 2021-10-26 | CVE-2021-41157 | Missing Authentication for Critical Function vulnerability in Freeswitch FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. | 5.3 |
| 2021-10-25 | CVE-2021-37624 | Missing Authentication for Critical Function vulnerability in Freeswitch FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. | 7.5 |
| 2021-10-22 | CVE-2021-42539 | Missing Authentication for Critical Function vulnerability in Emerson products The affected product is vulnerable to a missing permission validation on system backup restore, which could lead to account take over and unapproved settings change. | 8.8 |
| 2021-10-22 | CVE-2021-38457 | Missing Authentication for Critical Function vulnerability in Auvesy Versiondog The server permits communication without any authentication procedure, allowing the attacker to initiate a session with the server without providing any form of authentication. | 9.8 |
| 2021-10-12 | CVE-2021-27395 | Missing Authentication for Critical Function vulnerability in Siemens products A vulnerability has been identified in SIMATIC Process Historian 2013 and earlier (All versions), SIMATIC Process Historian 2014 (All versions < SP3 Update 6), SIMATIC Process Historian 2019 (All versions), SIMATIC Process Historian 2020 (All versions). | 8.1 |
| 2021-10-08 | CVE-2021-41568 | Missing Authentication for Critical Function vulnerability in TAD web Project TAD web 1.76 Tad Web is vulnerable to authorization bypass, thus remote attackers can exploit the vulnerability to use the original function of viewing bulletin boards and uploading files in the system. | 6.5 |