Vulnerabilities > Missing Authentication for Critical Function
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-18 | CVE-2019-12119 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform An issue was discovered in ONAP SDC through Dublin. | 9.8 |
| 2020-03-18 | CVE-2019-12118 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform An issue was discovered in ONAP SDC through Dublin. | 9.8 |
| 2020-03-18 | CVE-2019-12117 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform An issue was discovered in ONAP SDC through Dublin. | 9.8 |
| 2020-03-18 | CVE-2019-12116 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform An issue was discovered in ONAP SDC through Dublin. | 9.8 |
| 2020-03-18 | CVE-2019-12115 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform An issue was discovered in ONAP SDC through Dublin. | 9.8 |
| 2020-03-18 | CVE-2019-12114 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform 3.0.0/3.0.1/3.0.2 An issue was discovered in ONAP HOLMES before Dublin. | 9.8 |
| 2020-03-18 | CVE-2020-9325 | Missing Authentication for Critical Function vulnerability in Aquaforest Tiff Server 4.0 Aquaforest TIFF Server 4.0 allows Unauthenticated Arbitrary File Download. | 7.5 |
| 2020-03-18 | CVE-2020-8598 | Missing Authentication for Critical Function vulnerability in Trendmicro Apex One, Officescan and Worry-Free Business Security Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) server contains a vulnerable service DLL file that could allow a remote attacker to execute arbitrary code on affected installations with SYSTEM level privileges. | 9.8 |
| 2020-03-17 | CVE-2019-20105 | Missing Authentication for Critical Function vulnerability in Atlassian Application Links The EditApplinkServlet resource in the Atlassian Application Links plugin before version 5.4.20, from version 6.0.0 before version 6.0.12, from version 6.1.0 before version 6.1.2, from version 7.0.0 before version 7.0.1, and from version 7.1.0 before version 7.1.3 allows remote attackers who have obtained access to administrator's session to access the EditApplinkServlet resource without needing to re-authenticate to pass "WebSudo" in products that support "WebSudo" through an improper access control vulnerability. | 4.9 |
| 2020-03-13 | CVE-2019-13194 | Missing Authentication for Critical Function vulnerability in Brother products Some Brother printers (such as the HL-L8360CDW v1.20) were affected by different information disclosure vulnerabilities that provided sensitive information to an unauthenticated user who visits a specific URL. | 7.5 |