Vulnerabilities > Missing Authentication for Critical Function
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-07-29 | CVE-2020-2076 | Missing Authentication for Critical Function vulnerability in Sick Package Analytics 04.0.0 SICK Package Analytics software up to and including version V04.0.0 are vulnerable to an authentication bypass by directly interfacing with the REST API. | 9.8 |
| 2020-07-23 | CVE-2020-15391 | Missing Authentication for Critical Function vulnerability in Devspace 4.13.0 The UI in DevSpace 4.13.0 allows web sites to execute actions on pods (on behalf of a victim) because of a lack of authentication for the WebSocket protocol. | 9.8 |
| 2020-07-23 | CVE-2020-10921 | Missing Authentication for Critical Function vulnerability in Automationdirect C-More HMI EA9 Firmware 6.52 This vulnerability allows remote attackers to issue commands on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. | 9.8 |
| 2020-07-23 | CVE-2020-10920 | Missing Authentication for Critical Function vulnerability in Automationdirect C-More HMI EA9 Firmware 6.52 This vulnerability allows remote attackers to execute arbitrary code on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. | 9.8 |
| 2020-07-22 | CVE-2020-15894 | Missing Authentication for Critical Function vulnerability in Dlink Dir-816L Firmware 2.06/2.06.B09 An issue was discovered on D-Link DIR-816L devices 2.x before 1.10b04Beta02. | 7.5 |
| 2020-07-20 | CVE-2020-12028 | Missing Authentication for Critical Function vulnerability in Rockwellautomation Factorytalk View In all versions of FactoryTalk View SEA remote, an authenticated attacker may be able to utilize certain handlers to interact with the data on the remote endpoint since those handlers do not enforce appropriate permissions. | 8.1 |
| 2020-07-17 | CVE-2020-10605 | Missing Authentication for Critical Function vulnerability in Grundfos CIM 500 Firmware Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files. | 7.5 |
| 2020-07-16 | CVE-2020-13405 | Missing Authentication for Critical Function vulnerability in Microweber userfiles/modules/users/controller/controller.php in Microweber before 1.1.20 allows an unauthenticated user to disclose the users database via a /modules/ POST request. | 7.5 |
| 2020-07-15 | CVE-2020-14501 | Missing Authentication for Critical Function vulnerability in Advantech Iview 5.6 Advantech iView, versions 5.6 and prior, has an improper authentication for critical function (CWE-306) issue. | 9.8 |
| 2020-07-14 | CVE-2020-5373 | Missing Authentication for Critical Function vulnerability in Dell EMC Omimssc for Sccm and EMC Omimssc for Scvmm Dell EMC OpenManage Integration for Microsoft System Center (OMIMSSC) for SCCM and SCVMM versions prior to 7.2.1 contain an improper authentication vulnerability. | 7.5 |