VYPR

CWE-287

Improper Authentication

ClassDraftLikelihood: High

Description

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-114 · CAPEC-115 · CAPEC-151 · CAPEC-194 · CAPEC-22 · CAPEC-57 · CAPEC-593 · CAPEC-633 · CAPEC-650 · CAPEC-94

CVEs mapped to this weakness (2,419)

page 50 of 121
  • CVE-2018-15479MedAug 30, 2018
    risk 0.42cvss 6.5epss 0.01

    An issue was discovered in myStrom WiFi Switch V1 before 2.66, WiFi Switch V2 before 3.80, WiFi Switch EU before 3.80, WiFi Bulb before 2.58, WiFi LED Strip before 3.80, WiFi Button before 2.73, and WiFi Button Plus before 2.73. Devices did not authenticate themselves to the…

  • CVE-2018-15598HigAug 21, 2018
    risk 0.42cvss 7.5epss 0.03

    Containous Traefik 1.6.x before 1.6.6, when --api is used, exposes the configuration and secret if authentication is missing and the API's port is publicly reachable.

  • CVE-2017-12195MedJul 27, 2018
    risk 0.42cvss 6.5epss 0.01

    A flaw was found in all Openshift Enterprise versions using the openshift elasticsearch plugin. An attacker with knowledge of the given name used to authenticate and access Elasticsearch can later access it without the token, bypassing authentication. This attack also requires…

  • CVE-2018-5387HigJul 24, 2018
    risk 0.42cvss 7.5epss 0.02

    Wizkunde SAMLBase may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipulate the SAML data without invalidating the cryptographic signature, allowing the attack to potentially bypass authentication…

  • CVE-2018-14345HigJul 17, 2018
    risk 0.42cvss 7.5epss 0.01

    An issue was discovered in SDDM through 0.17.0. If configured with ReuseSession=true, the password is not checked for users with an already existing session. Any user with access to the system D-Bus can therefore unlock any graphical session. This is related to…

  • CVE-2018-8902MedJun 29, 2018
    risk 0.42cvss 6.5epss 0.02

    An issue was discovered in Ivanti Avalanche for all versions between 5.3 and 6.2. The impacted products used a single shared key encryption model to encrypt data. A user with access to system databases can use the discovered key to access potentially confidential stored data,…

  • CVE-2018-12271MedJun 13, 2018
    risk 0.42cvss 6.4epss 0.00

    An issue was discovered in the com.getdropbox.Dropbox app 100.2 for iOS. The LAContext class for Biometric (TouchID) validation allows authentication bypass by overriding the LAContext return Boolean value to be "true" because the kSecAccessControlUserPresence protection…

  • CVE-2017-9421MedMay 24, 2018
    risk 0.42cvss 6.5epss 0.01

    Authentication Bypass vulnerability in Accellion kiteworks before 2017.01.00 allows remote attackers to execute certain API calls on behalf of a web user using a gathered token via a POST request to /oauth/token.

  • CVE-2018-6020MedMay 9, 2018
    risk 0.42cvss 6.5epss 0.01

    In Silex SX-500 all versions and GE MobileLink(GEH-500) version 1.54 and prior, authentication is not verified when making certain POST requests, which may allow attackers to modify system settings.

  • CVE-2017-3775MedMay 4, 2018
    risk 0.42cvss 6.4epss 0.00

    Some Lenovo System x server BIOS/UEFI versions, when Secure Boot mode is enabled by a system administrator, do not properly authenticate signed code before booting it. As a result, an attacker with physical access to the system could boot unsigned code.

  • CVE-2018-0163MedMar 28, 2018
    risk 0.42cvss 6.5epss 0.01

    A vulnerability in the 802.1x multiple-authentication (multi-auth) feature of Cisco IOS Software could allow an unauthenticated, adjacent attacker to bypass the authentication phase on an 802.1x multi-auth port. The vulnerability is due to a logic change error introduced into…

  • CVE-2015-4987MedMar 27, 2018
    risk 0.42cvss 6.5epss 0.01

    The search and replay servers in IBM Tealeaf Customer Experience 8.0 through 9.0.2 allow remote attackers to bypass authentication via unspecified vectors. IBM X-Force ID: 105896.

  • CVE-2017-7638MedMar 8, 2018
    risk 0.42cvss 6.5epss 0.01

    QNAP NAS application Media Streaming add-on version 421.1.0.2, 430.1.2.0, and earlier does not authenticate requests properly. Successful exploitation could lead to change of the Media Streaming settings, and leakage of sensitive information of the QNAP NAS.

  • CVE-2018-1286MedFeb 28, 2018
    risk 0.42cvss 6.5epss 0.01

    In Apache OpenMeetings 3.0.0 - 4.0.1, CRUD operations on privileged users are not password protected allowing an authenticated attacker to deny service for privileged users.

  • CVE-2017-9316MedNov 27, 2017
    risk 0.42cvss 6.5epss 0.02

    Firmware upgrade authentication bypass vulnerability was found in Dahua IPC-HDW4300S and some IP products. The vulnerability was caused by internal Debug function. This particular function was used for problem analysis and performance tuning during product development phase. It…

  • CVE-2017-1222MedOct 26, 2017
    risk 0.42cvss 6.5epss 0.01

    IBM Tivoli Endpoint Manager (IBM BigFix Platform 9.2 and 9.5) does not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas. IBM X-Force ID: 123862.

  • CVE-2017-13984MedSep 30, 2017
    risk 0.42cvss 6.5epss 0.02

    An authentication vulnerability in HPE BSM Platform Application Performance Management System Health product versions 9.26, 9.30 and 9.40, allows remote users to delete arbitrary files via servlet directory traversal.

  • CVE-2017-7650MedSep 11, 2017
    risk 0.42cvss 6.5epss 0.02

    In Mosquitto before 1.4.12, pattern based ACLs can be bypassed by clients that set their username/client id to '#' or '+'. This allows locally or remotely connected clients to access MQTT topics that they do have the rights to. The same issue may be present in third party…

  • CVE-2017-12225MedSep 7, 2017
    risk 0.42cvss 6.5epss 0.02

    A vulnerability in the web functionality of the Cisco Prime LAN Management Solution could allow an authenticated, remote attacker to hijack another user's administrative session, aka a Session Fixation Vulnerability. The vulnerability is due to the reuse of a preauthentication…

  • CVE-2017-14117MedSep 3, 2017
    risk 0.42cvss 5.9epss 0.08

    The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG589 and NVG599 devices, when IP Passthrough mode is not used, configures an unauthenticated proxy service on WAN TCP port 49152, which allows remote attackers to establish arbitrary TCP connections to intranet hosts by…