Vulnerabilities > Missing Authentication for Critical Function

DATE CVE VULNERABILITY TITLE RISK
2021-03-03 CVE-2021-27215 Missing Authentication for Critical Function vulnerability in Genua Genuagate 10.1/9.0/9.6.0
An issue was discovered in genua genugate before 9.0 Z p19, 9.1.x through 9.6.x before 9.6 p7, and 10.x before 10.1 p4.
network
low complexity
genua CWE-306
critical
 9.8
9.8
2021-02-27 CVE-2019-25020 Missing Authentication for Critical Function vulnerability in Scytl Secure Vote 2.1
An issue was discovered in Scytl sVote 2.1.
network
low complexity
scytl CWE-306
7.5
7.5
2021-02-26 CVE-2019-11684 Missing Authentication for Critical Function vulnerability in Bosch products
Improper Access Control in the RCP+ server of the Bosch Video Recording Manager (VRM) component allows arbitrary and unauthenticated access to a limited subset of certificates, stored in the underlying Microsoft Windows operating system.
network
low complexity
bosch CWE-306
critical
 9.8
9.8
2021-02-24 CVE-2021-1396 Missing Authentication for Critical Function vulnerability in Cisco products
Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated, remote attacker to gain privileged access to host-level operations or to learn device-specific information, create diagnostic files, and make limited configuration changes.
network
low complexity
cisco CWE-306
6.5
6.5
2021-02-24 CVE-2021-1393 Missing Authentication for Critical Function vulnerability in Cisco products
Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated, remote attacker to gain privileged access to host-level operations or to learn device-specific information, create diagnostic files, and make limited configuration changes.
network
low complexity
cisco CWE-306
critical
 9.8
9.8
2021-02-24 CVE-2021-20662 Missing Authentication for Critical Function vulnerability in Contec Sv-Cpt-Mc310 Firmware 6.0/6.00
Missing authentication for critical function in SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an attacker to alter the setting information without the access privileges via unspecified vectors.
network
low complexity
contec CWE-306
7.5
7.5
2021-02-23 CVE-2021-20198 Missing Authentication for Critical Function vulnerability in Redhat Openshift Installer
A flaw was found in the OpenShift Installer before version v0.9.0-master.0.20210125200451-95101da940b0.
network
high complexity
redhat CWE-306
8.1
8.1
2021-02-17 CVE-2020-36245 Missing Authentication for Critical Function vulnerability in Gramaddict
GramAddict through 1.2.3 allows remote attackers to execute arbitrary code because of use of UIAutomator2 and ATX-Agent.
low complexity
gramaddict CWE-306
8.8
8.8
2021-02-17 CVE-2021-26697 Missing Authentication for Critical Function vulnerability in Apache Airflow 2.0.0
The lineage endpoint of the deprecated Experimental API was not protected by authentication in Airflow 2.0.0.
network
low complexity
apache CWE-306
5.3
5.3
2021-02-16 CVE-2021-20067 Missing Authentication for Critical Function vulnerability in Racom M!Dge Firmware 4.4.40.105
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to view sensitive syslog events without authentication.
network
low complexity
racom CWE-306
5.3
5.3