Vulnerabilities > Missing Authentication for Critical Function
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-07-02 | CVE-2020-3402 | Missing Authentication for Critical Function vulnerability in Cisco Unified Customer Voice Portal A vulnerability in the Java Remote Method Invocation (RMI) interface of Cisco Unified Customer Voice Portal (CVP) could allow an unauthenticated, remote attacker to access sensitive information on an affected device. | 7.5 |
| 2020-07-01 | CVE-2020-13382 | Missing Authentication for Critical Function vulnerability in Os4Ed Opensis openSIS through 7.4 has Incorrect Access Control. | 9.1 |
| 2020-06-26 | CVE-2020-15336 | Missing Authentication for Critical Function vulnerability in Zyxel Cloudcnm Secumanager 3.1.0/3.1.1 Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has no authentication for /cnr requests. | 7.5 |
| 2020-06-26 | CVE-2020-15335 | Missing Authentication for Critical Function vulnerability in Zyxel Cloudcnm Secumanager 3.1.0/3.1.1 Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has no authentication for /registerCpe requests. | 7.5 |
| 2020-06-24 | CVE-2020-11961 | Missing Authentication for Critical Function vulnerability in MI Xiaomi R3600 Firmware Xiaomi router R3600 ROM before 1.0.50 is affected by a sensitive information leakage caused by an insecure interface get_config_result without authentication | 7.5 |
| 2020-06-24 | CVE-2020-10272 | Missing Authentication for Critical Function vulnerability in multiple products MiR100, MiR200 and other MiR robots use the Robot Operating System (ROS) default packages exposing the computational graph without any sort of authentication. network low complexity aliasrobotics mobile-industrial-robotics enabled-robotics uvd-robots CWE-306 critical | 9.8 |
| 2020-06-23 | CVE-2020-9480 | Missing Authentication for Critical Function vulnerability in multiple products In Apache Spark 2.4.5 and earlier, a standalone resource manager's master may be configured to require authentication (spark.authenticate) via a shared secret. | 9.8 |
| 2020-06-15 | CVE-2020-11969 | Missing Authentication for Critical Function vulnerability in Apache Tomee If Apache TomEE is configured to use the embedded ActiveMQ broker, and the broker URI includes the useJMX=true parameter, a JMX port is opened on TCP port 1099, which does not include authentication. | 9.8 |
| 2020-06-15 | CVE-2020-13150 | Missing Authentication for Critical Function vulnerability in Dlink Dsl-2750U Firmware Me1.03 D-link DSL-2750U ISL2750UEME3.V1E devices allow approximately 90 seconds of access to the control panel, after a restart, before MAC address filtering rules become active. | 7.8 |
| 2020-06-15 | CVE-2020-1813 | Missing Authentication for Critical Function vulnerability in Huawei P30 Firmware HUAWEI P30 smart phone with versions earlier than 10.1.0.135(C00E135R2P11) have an improper authentication vulnerability. | 6.8 |