Vulnerabilities > Missing Authentication for Critical Function

DATE	CVE	VULNERABILITY TITLE	RISK
2020-04-16	CVE-2020-7114	Missing Authentication for Critical Function vulnerability in Arubanetworks Clearpass A vulnerability exists allowing attackers, when present in the same network segment as ClearPass' management interface, to make changes to certain databases in ClearPass by crafting HTTP packets. network low complexity arubanetworks CWE-306 critical	9.8
2020-04-15	CVE-2019-12524	Missing Authentication for Critical Function vulnerability in multiple products An issue was discovered in Squid through 4.7. network low complexity squid-cache debian canonical CWE-306 critical	9.8
2020-04-14	CVE-2020-6235	Missing Authentication for Critical Function vulnerability in SAP Solution Manager 7.2 SAP Solution Manager (Diagnostics Agent), version 7.2, does not perform the authentication check for the functionalities of the Collector Simulator, leading to Missing Authentication. network low complexity sap CWE-306	8.6
2020-04-14	CVE-2019-16879	Missing Authentication for Critical Function vulnerability in Mysyngeryss Husky RTU 6049-E70 Firmware The Synergy Systems & Solutions (SSS) HUSKY RTU 6049-E70, with firmware Versions 5.0 and prior, has a Missing Authentication for Critical Function (CWE-306) vulnerability. network low complexity mysyngeryss CWE-306 critical	9.8
2020-04-14	CVE-2020-9004	Missing Authentication for Critical Function vulnerability in Wowza Streaming Engine A remote authenticated authorization-bypass vulnerability in Wowza Streaming Engine 4.8.0 and earlier allows any read-only user to issue requests to the administration panel in order to change functionality. network low complexity wowza CWE-306	8.8
2020-04-13	CVE-2020-11673	Missing Authentication for Critical Function vulnerability in Total-Soft Responsive Poll An issue was discovered in the Responsive Poll through 1.3.4 for Wordpress. network low complexity total-soft CWE-306 critical	9.8
2020-04-10	CVE-2020-3952	Missing Authentication for Critical Function vulnerability in VMWare Vcenter Server 6.7 Under certain conditions, vmdir that ships with VMware vCenter Server, as part of an embedded or external Platform Services Controller (PSC), does not correctly implement access controls. network low complexity vmware CWE-306 critical	9.8
2020-04-09	CVE-2020-10625	Missing Authentication for Critical Function vulnerability in Advantech Webaccess/Nms 2.0.3 WebAccess/NMS (versions prior to 3.0.2) allows an unauthenticated remote user to create a new admin account. network low complexity advantech CWE-306 critical	9.8
2020-04-08	CVE-2020-10263	Missing Authentication for Critical Function vulnerability in MI Xiaomi Xiaoai Speaker PRO Lx06 Firmware 1.52.4 An issue was discovered on XIAOMI XIAOAI speaker Pro LX06 1.52.4. low complexity mi CWE-306	6.8
2020-04-08	CVE-2018-21041	Missing Authentication for Critical Function vulnerability in Google Android 8.0/8.1 An issue was discovered on Samsung mobile devices with O(8.x) software. network low complexity google CWE-306	7.5