Vulnerabilities > Missing Authentication for Critical Function
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-24 | CVE-2017-3217 | Missing Authentication for Critical Function vulnerability in Calamp products CalAmp LMU 3030 series OBD-II CDMA and GSM devices has an SMS (text message) interface that can be deployed where no password is configured for this interface by the integrator / reseller. | 9.3 |
| 2018-07-24 | CVE-2017-3209 | Missing Authentication for Critical Function vulnerability in Dbpower U818A Firmware The DBPOWER U818A WIFI quadcopter drone provides FTP access over its own local access point, and allows full file permissions to the anonymous user. | 4.8 |
| 2018-07-18 | CVE-2018-0377 | Missing Authentication for Critical Function vulnerability in Cisco Mobility Services Engine and Policy Suite A vulnerability in the Open Systems Gateway initiative (OSGi) interface of Cisco Policy Suite before 18.1.0 could allow an unauthenticated, remote attacker to directly connect to the OSGi interface. | 7.5 |
| 2018-07-18 | CVE-2018-0376 | Missing Authentication for Critical Function vulnerability in Cisco Mobility Services Engine and Policy Suite A vulnerability in the Policy Builder interface of Cisco Policy Suite before 18.2.0 could allow an unauthenticated, remote attacker to access the Policy Builder interface. | 7.5 |
| 2018-07-18 | CVE-2018-0374 | Missing Authentication for Critical Function vulnerability in Cisco Mobility Services Engine 14.0.0 A vulnerability in the Policy Builder database of Cisco Policy Suite before 18.2.0 could allow an unauthenticated, remote attacker to connect directly to the Policy Builder database. | 7.5 |
| 2018-07-13 | CVE-2016-9496 | Missing Authentication for Critical Function vulnerability in Hughes products Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, lacks authentication. | 6.1 |
| 2018-07-11 | CVE-2018-10635 | Missing Authentication for Critical Function vulnerability in Universal-Robots Cb3.1 Firmware 3.4.5100 In Universal Robots Robot Controllers Version CB 3.1, SW Version 3.4.5-100, ports 30001/TCP to 30003/TCP listen for arbitrary URScript code and execute the code. | 10.0 |
| 2018-07-03 | CVE-2017-0919 | Missing Authentication for Critical Function vulnerability in Gitlab GitLab Community and Enterprise Editions before 10.1.6, 10.2.6, and 10.3.4 are vulnerable to an authorization bypass issue in the GitLab import component resulting in an attacker being able to perform operations under a group in which they were previously unauthorized. | 5.0 |
| 2018-07-03 | CVE-2018-7778 | Missing Authentication for Critical Function vulnerability in Schneider-Electric Evlink Charging Station Firmware In Schneider Electric Evlink Charging Station versions prior to v3.2.0-12_v1, the Web Interface has an issue that may allow a remote attacker to gain administrative privileges without properly authenticating remote users. | 7.5 |
| 2018-06-28 | CVE-2018-8016 | Missing Authentication for Critical Function vulnerability in Apache Cassandra The default configuration in Apache Cassandra 3.8 through 3.11.1 binds an unauthenticated JMX/RMI interface to all network interfaces, which allows remote attackers to execute arbitrary Java code via an RMI request. | 9.8 |