VYPR

CWE-287

Improper Authentication

ClassDraftLikelihood: High

Description

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-114 · CAPEC-115 · CAPEC-151 · CAPEC-194 · CAPEC-22 · CAPEC-57 · CAPEC-593 · CAPEC-633 · CAPEC-650 · CAPEC-94

CVEs mapped to this weakness (2,419)

page 11 of 121
  • CVE-2018-5451CriMar 28, 2018
    risk 0.64cvss 9.8epss 0.03

    In Philips Alice 6 System version R8.0.2 or prior, when an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct. This weakness can lead to the exposure of resources or functionality to unintended actors, possibly…

  • CVE-2018-1237CriMar 27, 2018
    risk 0.64cvss 9.8epss 0.02

    Dell EMC ScaleIO versions prior to 2.5, contain improper restriction of excessive authentication attempts on the Light installation Agent (LIA). This component is deployed on every server in the ScaleIO cluster and is used for central management of ScaleIO nodes. A remote…

  • CVE-2018-7532CriMar 22, 2018
    risk 0.64cvss 9.8epss 0.08

    Unauthentication vulnerabilities have been identified in Geutebruck G-Cam/EFD-2250 Version 1.12.0.4 and Topline TopFD-2125 Version 3.15.1 IP cameras, which may allow remote code execution.

  • CVE-2017-14008CriMar 20, 2018
    risk 0.64cvss 9.8epss 0.03

    GE Centricity PACS RA1000, diagnostic image analysis, all current versions are affected these devices use default or hard-coded credentials. Successful exploitation of this vulnerability may allow a remote attacker to bypass authentication and gain access to the affected devices.

  • CVE-2017-14006CriMar 20, 2018
    risk 0.64cvss 9.8epss 0.02

    GE Xeleris versions 1.0,1.1,2.1,3.0,3.1, medical imaging systems, all current versions are affected, these devices use default or hard-coded credentials. Successful exploitation of this vulnerability may allow a remote attacker to bypass authentication and gain access to the…

  • CVE-2017-14004CriMar 20, 2018
    risk 0.64cvss 9.8epss 0.02

    GE GEMNet License server (EchoServer) all current versions are affected these devices use default or hard-coded credentials. Successful exploitation of this vulnerability may allow a remote attacker to bypass authentication and gain access to the affected devices.

  • CVE-2017-14002CriMar 20, 2018
    risk 0.64cvss 9.8epss 0.05

    GE Infinia/Infinia with Hawkeye 4 medical imaging systems all current versions are affected these devices use default or hard-coded credentials. Successful exploitation of this vulnerability may allow a remote attacker to bypass authentication and gain access to the affected…

  • CVE-2016-9880CriMar 16, 2018
    risk 0.64cvss 9.8epss 0.02

    The GemFire broker for Cloud Foundry 1.6.x before 1.6.5 and 1.7.x before 1.7.1 has multiple API endpoints which do not require authentication and could be used to gain access to the cluster managed by the broker.

  • CVE-2018-8710CriMar 14, 2018
    risk 0.64cvss 9.8epss 0.04

    A remote code execution issue was discovered in the WooCommerce Products Filter (aka WOOF) plugin before 2.2.0 for WordPress, as demonstrated by the shortcode parameter in a woof_redraw_woof action. The plugin implemented a page redraw AJAX function accessible to anyone without…

  • CVE-2018-6299CriMar 13, 2018
    risk 0.64cvss 9.8epss 0.01

    Authentication bypass in Hanwha Techwin Smartcams

  • CVE-2018-6294CriMar 13, 2018
    risk 0.64cvss 9.8epss 0.01

    Unsecured way of firmware update in Hanwha Techwin Smartcams

  • CVE-2017-2628CriMar 12, 2018
    risk 0.64cvss 9.8epss 0.04

    curl, as shipped in Red Hat Enterprise Linux 6 before version 7.19.7-53, did not correctly backport the fix for CVE-2015-3148 because it did not reflect the fact that the HAVE_GSSAPI define was meanwhile substituted by USE_HTTP_NEGOTIATE. This issue was introduced in RHEL 6.7…

  • CVE-2018-7213CriMar 11, 2018
    risk 0.64cvss 9.8epss 0.02

    The Password Manager Extension in Abine Blur 7.8.242* before 7.8.2428 allows attackers to bypass the Multi-Factor Authentication and macOS disk-encryption protection mechanisms, and consequently exfiltrate secured data, because the right-click context menu is not secured.

  • CVE-2018-7228CriMar 9, 2018
    risk 0.64cvss 9.8epss 0.02

    A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow an unauthenticated, remote attacker to bypass authentication and get the administrator privileges.

  • CVE-2018-1343CriMar 6, 2018
    risk 0.64cvss 9.8epss 0.01

    PAM exposure enabling unauthenticated access to remote host

  • CVE-2018-5455CriMar 5, 2018
    risk 0.64cvss 9.8epss 0.02

    A Reliance on Cookies without Validation and Integrity Checking issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. The application allows a cookie parameter to consist of only digits, allowing an attacker to perform a brute force attack…

  • CVE-2018-0121CriFeb 22, 2018
    risk 0.64cvss 9.8epss 0.03

    A vulnerability in the authentication functionality of the web-based service portal of Cisco Elastic Services Controller Software could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrator privileges on an affected…

  • CVE-2011-4973CriFeb 15, 2018
    risk 0.64cvss 9.8epss 0.01

    Authentication bypass vulnerability in mod_nss 1.0.8 allows remote attackers to assume the identity of a valid user by using their certificate and entering 'password' as the password.

  • CVE-2018-5459CriFeb 13, 2018
    risk 0.64cvss 9.8epss 0.03

    An Improper Authentication issue was discovered in WAGO PFC200 Series 3S CoDeSys Runtime versions 2.3.X and 2.4.X. An attacker can execute different unauthenticated remote operations because of the CoDeSys Runtime application, which is available via network by default on Port…

  • CVE-2018-3601CriFeb 9, 2018
    risk 0.64cvss 9.8epss 0.04

    A password hash usage authentication bypass vulnerability in Trend Micro Control Manager 6.0 could allow a remote attacker to bypass authentication on vulnerable installations.