VYPR

CWE-287

Improper Authentication

ClassDraftLikelihood: High

Description

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-114 · CAPEC-115 · CAPEC-151 · CAPEC-194 · CAPEC-22 · CAPEC-57 · CAPEC-593 · CAPEC-633 · CAPEC-650 · CAPEC-94

CVEs mapped to this weakness (2,419)

page 10 of 121
  • CVE-2018-0318CriJun 7, 2018
    risk 0.64cvss 9.8epss 0.03

    A vulnerability in the password reset function of Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote attacker to gain unauthorized access to an affected device. The vulnerability is due to insufficient validation of a password reset request. An…

  • CVE-2017-7931CriJun 6, 2018
    risk 0.64cvss 9.8epss 0.03

    In ABB IP GATEWAY 3.39 and prior, by accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access the configuration files and application pages without authentication.

  • CVE-2018-10611CriJun 4, 2018
    risk 0.64cvss 9.8epss 0.05

    Java remote method invocation (RMI) input port in GE MDS PulseNET and MDS PulseNET Enterprise version 3.2.1 and prior may be exploited to allow unauthenticated users to launch applications and support remote code execution through web services.

  • CVE-2018-11711CriJun 4, 2018
    risk 0.64cvss 9.8epss 0.05

    A remote attacker can bypass the System Manager Mode on the Canon MF210 and MF220 web interface without knowing the PIN for /login.html via vectors involving /portal_top.html to get full access to the device. NOTE: the vendor reportedly responded that this issue occurs when a…

  • CVE-2018-11692CriJun 4, 2018
    risk 0.64cvss 9.8epss 0.05

    An issue was discovered on Canon LBP6650, LBP3370, LBP3460, and LBP7750C devices. It is possible to bypass the Administrator Mode authentication for /tlogin.cgi via vectors involving frame.cgi?page=DevStatus. NOTE: the vendor reportedly responded that this issue occurs when a…

  • CVE-2016-10532CriMay 31, 2018
    risk 0.64cvss 9.8epss 0.02

    console-io is a module that allows users to implement a web console in their application. A malicious user could bypass the authentication and execute any command that the user who is running the console-io application 2.2.13 and earlier is able to run. This means that if…

  • CVE-2018-0271CriMay 17, 2018
    risk 0.64cvss 9.8epss 0.03

    A vulnerability in the API gateway of the Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass authentication and access critical services. The vulnerability is due to a failure to normalize URLs prior to servicing requests.…

  • CVE-2018-10683CriMay 9, 2018
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in WildFly 10.1.2.Final. In the case of a default installation without a security realm reference, an attacker can successfully access the server without authentication. NOTE: the Security Realms documentation in the product's Admin Guide indicates that…

  • CVE-2018-10682CriMay 9, 2018
    risk 0.64cvss 9.8epss 0.08

    An issue was discovered in WildFly 10.1.2.Final. It is possible for an attacker to access the administration panel on TCP port 9990 without any authentication using "anonymous" access that is automatically created. Once logged in, a misconfiguration present by default…

  • CVE-2018-10544CriMay 2, 2018
    risk 0.64cvss 9.8epss 0.01

    Meross MSS110 devices through 1.1.24 contain an unauthenticated admin.htm administrative interface.

  • CVE-2018-1418HigApr 26, 2018
    risk 0.64cvss 8.8epss 0.52

    IBM Security QRadar SIEM 7.2 and 7.3 could allow a user to bypass authentication which could lead to code execution. IBM X-Force ID: 138824.

  • CVE-2018-10362CriApr 25, 2018
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in phpLiteAdmin 1.9.5 through 1.9.7.1. Due to loose comparison with '==' instead of '===' in classes/Authorization.php for the user-provided login password, it is possible to login with a simpler password if the password has the form of a power in…

  • CVE-2018-7760CriApr 18, 2018
    risk 0.64cvss 9.8epss 0.01

    An authorization bypass vulnerability exists in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200. Requests to CGI functions allow malicious users to bypass authorization.

  • CVE-2017-0356CriApr 13, 2018
    risk 0.64cvss 9.8epss 0.03

    A flaw, similar to to CVE-2016-9646, exists in ikiwiki before 3.20170111, in the passwordauth plugin's use of CGI::FormBuilder, allowing an attacker to bypass authentication via repeated parameters.

  • CVE-2018-6873CriApr 4, 2018
    risk 0.64cvss 9.8epss 0.02

    The Auth0 authentication service before 2017-10-15 allows privilege escalation because the JWT audience is not validated.

  • CVE-2018-9249CriApr 4, 2018
    risk 0.64cvss 9.8epss 0.06

    FiberHome VDSL2 Modem HG 150-UB devices allow authentication bypass by ignoring the parent.location='login.html' JavaScript code in the response to an unauthenticated request.

  • CVE-2018-3822CriMar 30, 2018
    risk 0.64cvss 9.8epss 0.02

    X-Pack Security versions 6.2.0, 6.2.1, and 6.2.2 are vulnerable to a user impersonation attack via incorrect XML canonicalization and DOM traversal. An attacker might have been able to impersonate a legitimate user if the SAML Identity Provider allows for self registration with…

  • CVE-2018-9148CriMar 30, 2018
    risk 0.64cvss 9.8epss 0.04

    Western Digital WD My Cloud v04.05.00-320 devices embed the session token (aka PHPSESSID) in filenames, which makes it easier for attackers to bypass authentication by listing a directory. NOTE: this can be exploited in conjunction with CVE-2018-7171 for remote authentication…

  • CVE-2017-14911CriMar 30, 2018
    risk 0.64cvss 9.8epss 0.02

    In Android before 2018-01-05 on Qualcomm Snapdragon IoT, Snapdragon Mobile, Snapdragon Automobile APQ8096AU, MDM9206, MDM9650, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 430, SD 625, SD 650/52, SD 820, SD 835, it is possible for the XBL loader to skip the authentication of…

  • CVE-2018-4841CriMar 29, 2018
    risk 0.64cvss 9.8epss 0.05

    A vulnerability has been identified in TIM 1531 IRC (All versions < V1.1). A remote attacker with network access to port 80/tcp or port 443/tcp could perform administrative operations on the device without prior authentication. Successful exploitation could allow to cause a…