VYPR

CWE-287

Improper Authentication

ClassDraftLikelihood: High

Description

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-114 · CAPEC-115 · CAPEC-151 · CAPEC-194 · CAPEC-22 · CAPEC-57 · CAPEC-593 · CAPEC-633 · CAPEC-650 · CAPEC-94

CVEs mapped to this weakness (2,419)

page 65 of 121
  • CVE-2018-0362MedJun 21, 2018
    risk 0.28cvss 4.3epss 0.00

    A vulnerability in BIOS authentication management of Cisco 5000 Series Enterprise Network Compute System and Cisco Unified Computing (UCS) E-Series Servers could allow an unauthenticated, local attacker to bypass the BIOS authentication and execute actions as an unprivileged…

  • CVE-2017-5189MedMar 2, 2018
    risk 0.28cvss 4.3epss 0.01

    NetIQ iManager before 3.0.3 delivered a SSL private key in a Java application (JAR file) for authentication to Sentinel, allowing attackers to extract and establish their own connections to the Sentinel appliance.

  • CVE-2017-1000110MedOct 5, 2017
    risk 0.28cvss 4.3epss 0.01

    Blue Ocean allows the creation of GitHub organization folders that are set up to scan a GitHub organization for repositories and branches containing a Jenkinsfile, and create corresponding pipelines in Jenkins. It did not properly check the current user's authentication and…

  • CVE-2017-1002024MedSep 14, 2017
    risk 0.28cvss 4.3epss 0.01

    Vulnerability in web application Kind Editor v4.1.12, kindeditor/php/upload_json.php does not check authentication before allow users to upload files.

  • CVE-2017-12213MedSep 7, 2017
    risk 0.28cvss 4.3epss 0.01

    A vulnerability in the dynamic access control list (ACL) feature of Cisco IOS XE Software running on Cisco Catalyst 4000 Series Switches could allow an unauthenticated, adjacent attacker to cause dynamic ACL assignment to fail and the port to fail open. This could allow the…

  • CVE-2016-4863MedMay 22, 2017
    risk 0.28cvss 4.3epss 0.01

    The Toshiba FlashAir SD-WD/WC series Class 6 model with firmware version 1.00.04 and later, FlashAir SD-WD/WC series Class 10 model W-02 with firmware version 2.00.02 and later, FlashAir SD-WE series Class 10 model W-03, FlashAir Class 6 model with firmware version 1.00.04 and…

  • CVE-2026-46705MedJun 10, 2026
    risk 0.27cvss 5.3epss 0.00

    Russh is a Rust SSH client & server library. From version 0.34.0-beta.1 to before version 0.61.0, the russh server authentication path keeps internal userauth state across SSH_MSG_USERAUTH_REQUEST messages without separating that state when the request principal changes. RFC…

  • CVE-2026-49843MedJun 9, 2026
    risk 0.27cvss 5.3epss 0.00

    FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. Prior to version 1.11.1, mod_verto's JSON-RPC handler bound the connection to the…

  • CVE-2026-7722MedMay 4, 2026
    risk 0.27cvss 5.3epss 0.00

    A vulnerability was detected in PrefectHQ prefect up to 3.6.21. This impacts the function endswith of the file /api/health of the component Health Check API. Performing a manipulation results in improper authentication. The attack is possible to be carried out remotely. The…

  • CVE-2026-34736MedApr 2, 2026
    risk 0.27cvss 5.3epss 0.00

    Open edX Platform enables the authoring and delivery of online learning at any scale. From the maple release to before the ulmo release, an unauthenticated attacker can fully bypass the email verification process by combining two issues: the OAuth2 password grant issuing tokens…

  • CVE-2026-1305MedFeb 27, 2026
    risk 0.27cvss 5.3epss 0.00

    The Japanized for WooCommerce plugin for WordPress is vulnerable to Improper Authentication in versions up to, and including, 2.8.4. This is due to a flawed permission check in the `paidy_webhook_permission_check` function that unconditionally returns `true` when the webhook…

  • CVE-2025-53013MedJun 26, 2025
    risk 0.27cvss 5.2epss 0.00

    Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. A vulnerability present in versions 0.9.10 through 0.9.16 allows a user to authenticate to a Linux host via Himmelblau using an *invalid* Linux Hello PIN, provided the host is offline. While the…

  • CVE-2024-36402MedJan 16, 2025
    risk 0.27cvss 5.3epss 0.01

    Matrix Media Repo (MMR) is a highly configurable multi-homeserver media repository for Matrix. MMR before version 1.3.5 allows, by design, unauthenticated remote participants to trigger a download and caching of remote media from a remote homeserver to the local media…

  • CVE-2024-6535MedJul 17, 2024
    risk 0.27cvss 5.3epss 0.01

    A flaw was found in Skupper. When Skupper is initialized with the console-enabled and with console-auth set to Openshift, it configures the openshift oauth-proxy with a static cookie-secret. In certain circumstances, this may allow an attacker to bypass authentication to the…

  • CVE-2024-28188MedMay 23, 2024
    risk 0.27cvss 5.3epss 0.00

    Jupyter Scheduler is collection of extensions for programming jobs to run now or run on a schedule. The list of conda environments of `jupyter-scheduler` users maybe be exposed, potentially revealing information about projects that a specific user may be working on. This…

  • CVE-2022-38180MedAug 12, 2022
    risk 0.27cvss 5.3epss 0.01

    In JetBrains Ktor before 2.1.0 the wrong authentication provider could be selected in some cases

  • CVE-2018-10847MedJul 30, 2018
    risk 0.27cvss 4.2epss 0.02

    prosody before versions 0.10.2, 0.9.14 is vulnerable to an Authentication Bypass. Prosody did not verify that the virtual host associated with a user session remained the same across stream restarts. A user may authenticate to XMPP host A and migrate their authenticated session…

  • CVE-2026-44584medJun 22, 2026
    risk 0.26cvss epss

    ### Summary The email update functionality fails to invalidate the existing verification state when a user changes their email address, allowing a verified account to retain its verified status after switching to an unverified or unowned email address. ### Technical Details…

  • CVE-2026-35634MedApr 9, 2026
    risk 0.26cvss 5.1epss 0.00

    OpenClaw before 2026.3.23 contains an authentication bypass vulnerability in the Canvas gateway where authorizeCanvasRequest() unconditionally allows local-direct requests without validating bearer tokens or canvas capabilities. Attackers can send unauthenticated loopback HTTP…

  • CVE-2026-39411MedApr 8, 2026
    risk 0.26cvss 5.0epss 0.00

    LobeHub is a work-and-lifestyle space to find, build, and collaborate with agent teammates that grow with you. Prior to 2.1.48, the webapi authentication layer trusts a client-controlled X-lobe-chat-auth header that is only XOR-obfuscated, not signed or otherwise authenticated.…