Vulnerabilities > Missing Authentication for Critical Function
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-08 | CVE-2021-41974 | Missing Authentication for Critical Function vulnerability in TAD Book3 Project TAD Book3 Tad Book3 editing book page does not perform identity verification. | 9.1 |
| 2021-10-08 | CVE-2021-41975 | Missing Authentication for Critical Function vulnerability in Tadtools Project Tadtools TadTools special page is vulnerable to authorization bypass, thus remote attackers can use the specific parameter to delete arbitrary files in the system without logging in. | 9.1 |
| 2021-10-08 | CVE-2021-41976 | Missing Authentication for Critical Function vulnerability in TAD Uploader Project TAD Uploader 3.5.3 Tad Uploader edit book list function is vulnerable to authorization bypass, thus remote attackers can use the function to amend the folder names in the book list without logging in. | 5.3 |
| 2021-10-08 | CVE-2021-35979 | Missing Authentication for Critical Function vulnerability in Digi products An issue was discovered in Digi RealPort through 4.8.488.0. | 8.1 |
| 2021-10-04 | CVE-2021-23858 | Missing Authentication for Critical Function vulnerability in Bosch products Information disclosure: The main configuration, including users and their hashed passwords, is exposed by an unprotected web server resource and can be accessed without authentication. | 7.5 |
| 2021-10-04 | CVE-2021-39879 | Missing Authentication for Critical Function vulnerability in Gitlab Missing authentication in all versions of GitLab CE/EE since version 7.11.0 allows an attacker with access to a victim's session to disable two-factor authentication | 3.5 |
| 2021-10-01 | CVE-2021-3825 | Missing Authentication for Critical Function vulnerability in Pardus Liderahenk 2.1.15 On 2.1.15 version and below of Lider module in LiderAhenk software is leaking it's configurations via an unsecured API. | 9.6 |
| 2021-09-28 | CVE-2021-41104 | Missing Authentication for Critical Function vulnerability in Esphome Firmware 2021.9.1 ESPHome is a system to control the ESP8266/ESP32. | 7.5 |
| 2021-09-23 | CVE-2021-22012 | Missing Authentication for Critical Function vulnerability in VMWare Cloud Foundation and Vcenter Server The vCenter Server contains an information disclosure vulnerability due to an unauthenticated appliance management API. | 7.5 |
| 2021-09-21 | CVE-2021-37420 | Missing Authentication for Critical Function vulnerability in Zohocorp Manageengine Admanager Plus 6.1 Zoho ManageEngine ADSelfService Plus before 6112 is vulnerable to mail spoofing. | 6.5 |