Vulnerabilities > Missing Authentication for Critical Function

DATE	CVE	VULNERABILITY TITLE	RISK
2020-02-06	CVE-2019-19800	Missing Authentication for Critical Function vulnerability in Zohocorp Manageengine Applications Manager 14.0 Zoho ManageEngine Applications Manager 14 before 14520 allows a remote unauthenticated attacker to disclose OS file names via FailOverHelperServlet. network low complexity zohocorp CWE-306	5.3
2020-02-04	CVE-2019-4551	Missing Authentication for Critical Function vulnerability in IBM Security Directory Server IBM Security Directory Server 6.4.0 does not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas. network low complexity ibm CWE-306	5.3
2020-02-03	CVE-2019-16893	Missing Authentication for Critical Function vulnerability in Tp-Link Tp-Sg105E Firmware 1.0.0 The Web Management of TP-Link TP-SG105E V4 1.0.0 Build 20181120 devices allows an unauthenticated attacker to reboot the device via a reboot.cgi request. network low complexity tp-link CWE-306	7.5
2020-01-27	CVE-2019-19143	Missing Authentication for Critical Function vulnerability in Tp-Link Tl-Wr849N Firmware 0.9.14.16 TP-LINK TL-WR849N 0.9.1 4.16 devices do not require authentication to replace the firmware via a POST request to the cgi/softup URI. low complexity tp-link CWE-306	6.1
2020-01-27	CVE-2019-19822	Missing Authentication for Critical Function vulnerability in multiple products A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) allows remote attackers to retrieve the configuration, including sensitive data (usernames and passwords). network low complexity totolink realtek sapido ciktel kctvjeju fg-products hiwifi tbroad coship iodata hcn-max-c300n-project CWE-306	7.5
2020-01-26	CVE-2020-3142	Missing Authentication for Critical Function vulnerability in Cisco Webex Meetings Online A vulnerability in Cisco Webex Meetings Suite sites and Cisco Webex Meetings Online sites could allow an unauthenticated, remote attendee to join a password-protected meeting without providing the meeting password. network low complexity cisco CWE-306	7.5
2020-01-26	CVE-2019-16003	Missing Authentication for Critical Function vulnerability in Cisco UCS Director A vulnerability in the web-based management interface of Cisco UCS Director could allow an unauthenticated, remote attacker to download system log files from an affected device. network low complexity cisco CWE-306	5.3
2020-01-24	CVE-2020-7964	Missing Authentication for Critical Function vulnerability in Mirumee Saleor An issue was discovered in Mirumee Saleor 2.x before 2.9.1. network low complexity mirumee CWE-306	5.3
2020-01-24	CVE-2020-6964	Missing Authentication for Critical Function vulnerability in Gehealthcare products In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X and CARESCAPE Central Station (CSCS) Versions 2.X, the integrated service for keyboard switching of the affected devices could allow attackers to obtain remote keyboard input access without authentication over the network. network low complexity gehealthcare CWE-306	8.6
2020-01-21	CVE-2011-4322	Missing Authentication for Critical Function vulnerability in Websitebaker websitebaker prior to and including 2.8.1 has an authentication error in backup module. network low complexity websitebaker CWE-306	7.5