Vulnerabilities > Missing Authentication for Critical Function

DATE CVE VULNERABILITY TITLE RISK
2024-05-08 CVE-2024-2860 Missing Authentication for Critical Function vulnerability in Broadcom Brocade Sannav
The PostgreSQL implementation in Brocade SANnav versions before 2.3.0a is vulnerable to an incorrect local authentication flaw.
local
low complexity
broadcom CWE-306
7.8
2024-05-06 CVE-2024-3661 Missing Authentication for Critical Function vulnerability in multiple products
DHCP can add routes to a client’s routing table via the classless static route option (121).
7.6
2024-05-03 CVE-2023-50199 Missing Authentication for Critical Function vulnerability in Dlink G416 Firmware 1.08B02
D-Link G416 httpd Missing Authentication for Critical Function Remote Code Execution Vulnerability.
low complexity
dlink CWE-306
8.8
2024-05-03 CVE-2023-41186 Missing Authentication for Critical Function vulnerability in Dlink Dap-1325 Firmware 1.07B01
D-Link DAP-1325 CGI Missing Authentication Information Disclosure Vulnerability.
low complexity
dlink CWE-306
6.5
2024-05-03 CVE-2023-41187 Missing Authentication for Critical Function vulnerability in Dlink Dap-1325 Firmware 1.07B01
D-Link DAP-1325 HNAP Missing Authentication Remote Code Execution Vulnerability.
low complexity
dlink CWE-306
8.8
2024-05-03 CVE-2023-27357 Missing Authentication for Critical Function vulnerability in Netgear Rax30 Firmware
NETGEAR RAX30 GetInfo Missing Authentication Information Disclosure Vulnerability.
low complexity
netgear CWE-306
6.5
2024-05-03 CVE-2023-38123 Missing Authentication for Critical Function vulnerability in Inductiveautomation Ignition
Inductive Automation Ignition OPC UA Quick Client Missing Authentication for Critical Function Authentication Bypass Vulnerability.
network
low complexity
inductiveautomation CWE-306
8.8
2024-04-25 CVE-2023-51478 Missing Authentication for Critical Function vulnerability in Buildapp Build APP Online
Improper Authentication vulnerability in Abdul Hakeem Build App Online allows Privilege Escalation.This issue affects Build App Online: from n/a through 1.0.19.
network
low complexity
buildapp CWE-306
critical
9.8
2024-03-20 CVE-2024-28179 Missing Authentication for Critical Function vulnerability in Jupyter Server Proxy
Jupyter Server Proxy allows users to run arbitrary external processes alongside their Jupyter notebook servers and provides authenticated web access.
network
low complexity
jupyter CWE-306
critical
9.8
2024-03-15 CVE-2024-2450 Missing Authentication for Critical Function vulnerability in Mattermost Server
Mattermost versions 8.1.x before 8.1.10, 9.2.x before 9.2.6, 9.3.x before 9.3.2, and 9.4.x before 9.4.3 fail to correctly verify account ownership when switching from email to SAML authentication, allowing an authenticated attacker to take over other user accounts via a crafted switch request under specific conditions.
network
low complexity
mattermost CWE-306
8.8