VYPR

CWE-287

Improper Authentication

ClassDraftLikelihood: High

Description

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-114 · CAPEC-115 · CAPEC-151 · CAPEC-194 · CAPEC-22 · CAPEC-57 · CAPEC-593 · CAPEC-633 · CAPEC-650 · CAPEC-94

CVEs mapped to this weakness (2,419)

page 59 of 121
  • CVE-2018-14781MedAug 13, 2018
    risk 0.35cvss 5.3epss 0.01

    Medtronic MiniMed MMT devices when paired with a remote controller and having the “easy bolus” and “remote bolus” options enabled (non-default), are vulnerable to a capture-replay attack. An attacker can capture the wireless transmissions between the remote controller…

  • CVE-2018-9024MedJun 18, 2018
    risk 0.35cvss 5.3epss 0.01

    An improper authentication vulnerability in CA Privileged Access Manager 2.x allows attackers to spoof IP addresses in a log file.

  • CVE-2017-7639MedJun 5, 2018
    risk 0.35cvss 5.3epss 0.01

    QNAP NAS application Proxy Server through version 1.2.0 does not authenticate requests properly. Successful exploitation can lead to change of the settings of Proxy Server.

  • CVE-2018-11579MedMay 31, 2018
    risk 0.35cvss 5.3epss 0.01

    class-woo-banner-management.php in the MULTIDOTS WooCommerce Category Banner Management plugin 1.1.0 for WordPress has an Unauthenticated Settings Change Vulnerability, related to certain wp_ajax_nopriv_ usage. Anyone can change the plugin's setting by simply sending a request…

  • CVE-2016-9646MedApr 13, 2018
    risk 0.35cvss 5.3epss 0.01

    ikiwiki before 3.20161229 incorrectly called the CGI::FormBuilder->field method (similar to the CGI->param API that led to Bugzilla's CVE-2014-1572), which can be abused to lead to commit metadata forgery.

  • CVE-2018-7227MedMar 9, 2018
    risk 0.35cvss 5.3epss 0.01

    A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow retrieving of specially crafted URLs without authentication that can reveal sensitive information to an attacker.

  • CVE-2017-9285MedMar 2, 2018
    risk 0.35cvss 5.4epss 0.01

    NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services.

  • CVE-2017-0911MedFeb 9, 2018
    risk 0.35cvss 5.4epss 0.01

    Twitter Kit for iOS versions 3.0 to 3.2.1 is vulnerable to a callback verification flaw in the "Login with Twitter" component allowing an attacker to provide alternate credentials. In the final step of "Login with Twitter" authentication information is passed back to the…

  • CVE-2018-5794MedFeb 5, 2018
    risk 0.35cvss 5.3epss 0.01

    An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is No Authentication for the AeroScout Service via a crafted UDP packet.

  • CVE-2018-4835MedJan 25, 2018
    risk 0.35cvss 5.3epss 0.02

    A vulnerability has been identified in TeleControl Server Basic < V3.1. An attacker with network access to the TeleControl Server Basic's port 8000/tcp could bypass the authentication mechanism and read limited information.

  • CVE-2014-7860MedAug 25, 2017
    risk 0.35cvss 5.3epss 0.10

    The web/web_file/fb_publish.php script in D-Link DNS-320L before 1.04b12 and DNS-327L before 1.03b04 Build0119 does not authenticate requests, which allows remote attackers to obtain arbitrary photos and publish them to an arbitrary Facebook profile via a target album_id and…

  • CVE-2016-2102MedAug 22, 2017
    risk 0.35cvss 5.3epss 0.02

    HAProxy statistics in openstack-tripleo-image-elements are non-authenticated over the network.

  • CVE-2017-6871MedAug 8, 2017
    risk 0.35cvss 5.4epss 0.00

    A vulnerability was discovered in Siemens SIMATIC WinCC Sm@rtClient for Android (All versions before V1.0.2.2) and SIMATIC WinCC Sm@rtClient for Android Lite (All versions before V1.0.2.2). An attacker with physical access to an unlocked mobile device, that has the affected app…

  • CVE-2017-6624MedMay 3, 2017
    risk 0.35cvss 5.3epss 0.01

    A vulnerability in Cisco IOS 15.5(3)M Software for Cisco CallManager Express (CME) could allow an unauthenticated, remote attacker to make unauthorized phone calls. The vulnerability is due to a configuration restriction in the toll-fraud protections component of the affected…

  • CVE-2017-8078MedApr 23, 2017
    risk 0.35cvss 5.3epss 0.02

    On the TP-Link TL-SG108E 1.0, the upgrade process can be requested remotely without authentication (httpupg.cgi with a parameter called cmd). This affects the 1.1.2 Build 20141017 Rel.50749 firmware.

  • CVE-2017-6617MedApr 20, 2017
    risk 0.35cvss 5.4epss 0.01

    A vulnerability in the session identification management functionality of the web-based GUI of Cisco Integrated Management Controller (IMC) 3.0(1c) could allow an unauthenticated, remote attacker to hijack a valid user session on an affected system. The vulnerability exists…

  • CVE-2017-3867MedMar 17, 2017
    risk 0.35cvss 5.3epss 0.01

    A vulnerability in the Border Gateway Protocol (BGP) Bidirectional Forwarding Detection (BFD) implementation of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to bypass the access control list (ACL) for specific TCP and UDP…

  • CVE-2017-3795MedJan 26, 2017
    risk 0.35cvss 5.4epss 0.01

    A vulnerability in Cisco WebEx Meetings Server could allow an authenticated, remote attacker to conduct arbitrary password changes against any non-administrative user. More Information: CSCuz03345. Known Affected Releases: 2.6. Known Fixed Releases: 2.7.1.12.

  • CVE-2016-1000214MedOct 25, 2016
    risk 0.35cvss 5.3epss 0.01

    Ruckus Wireless H500 web management interface authentication bypass

  • CVE-2016-5133MedJul 23, 2016
    risk 0.35cvss 5.3epss 0.01

    Google Chrome before 52.0.2743.82 mishandles origin information during proxy authentication, which allows man-in-the-middle attackers to spoof a proxy-authentication login prompt or trigger incorrect credential storage by modifying the client-server data stream.