Vulnerabilities > Missing Authentication for Critical Function
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-17 | CVE-2020-35185 | Missing Authentication for Critical Function vulnerability in Docker Ghost Alpine Docker Image The official ghost docker images before 2.16.1-alpine (Alpine specific) contain a blank password for a root user. | 9.8 |
| 2020-12-16 | CVE-2020-28929 | Missing Authentication for Critical Function vulnerability in Epson EPS TSE Server 8 Firmware 21.0.11 Unrestricted access to the log downloader functionality in EPSON EPS TSE Server 8 (21.0.11) allows an unauthenticated attacker to remotely retrieve administrative hashed credentials via the maintenance/troubleshoot.php?download=1 URI. | 9.8 |
| 2020-12-16 | CVE-2020-25621 | Missing Authentication for Critical Function vulnerability in Solarwinds N-Central 12.3.0.670 An issue was discovered in SolarWinds N-Central 12.3.0.670. | 8.4 |
| 2020-12-16 | CVE-2020-35469 | Missing Authentication for Critical Function vulnerability in Softwareag Terracotta Server OSS 5.4.1 The Software AG Terracotta Server OSS Docker image 5.4.1 contains a blank password for the root user. | 9.8 |
| 2020-12-16 | CVE-2020-35468 | Missing Authentication for Critical Function vulnerability in Appbase Streams 2.1.2 The Appbase streams Docker image 2.1.2 contains a blank password for the root user. | 9.8 |
| 2020-12-16 | CVE-2020-35193 | Missing Authentication for Critical Function vulnerability in Sonarsource Sonarqube Docker Image The official sonarqube docker images before alpine (Alpine specific) contain a blank password for a root user. | 9.8 |
| 2020-12-15 | CVE-2020-35467 | Missing Authentication for Critical Function vulnerability in Docker Docs 20201214 The Docker Docs Docker image through 2020-12-14 contains a blank password for the root user. | 9.8 |
| 2020-12-15 | CVE-2020-35466 | Missing Authentication for Critical Function vulnerability in Blackfire Docker Image 20201214 The Blackfire Docker image through 2020-12-14 contains a blank password for the root user. | 9.8 |
| 2020-12-15 | CVE-2020-35464 | Missing Authentication for Critical Function vulnerability in Weave Cloud Agent 1.3.0 Version 1.3.0 of the Weave Cloud Agent Docker image contains a blank password for the root user. | 9.8 |
| 2020-12-15 | CVE-2020-35463 | Missing Authentication for Critical Function vulnerability in Instana Dynamic APM 1.0.0 Version 1.0.0 of the Instana Dynamic APM Docker image contains a blank password for the root user. | 9.8 |