CWE-287— Improper Authentication
4,308 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-287page 51 of 87
- CVE-2021-44077CRITICALCVSS 9.8EG 9.8⚠ KEV2021-11-29
Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechn…
- CVE-2021-44152CRITICALCVSS 9.8EG 9.82021-12-13
An issue was discovered in Reprise RLM 14.2. Because /goform/change_password_process does not verify authentication or authorization, an unauthenticated user can change the password of any existing user. This allows an attacker to change t…
- CVE-2021-44458HIGHCVSS 8.3EG 8.32022-01-10
Linux users running Lens 5.2.6 and earlier could be compromised by visiting a malicious website. The malicious website could make websocket connections from the victim's browser to Lens and so operate the local terminal feature. This would…
- CVE-2021-44514CRITICALCVSS 9.8EG 9.82021-12-09
OpUtils in Zoho ManageEngine OpManager 12.5 before 125490 mishandles authentication for a few audit directories.
- CVE-2021-44515CRITICALCVSS 9.8EG 9.8⚠ KEV2021-12-12
Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. F…
- CVE-2021-44524CRITICALCVSS 9.8EG 9.82021-12-14
A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated V2.80 (All versions), SiPass integrated V2.85 (All versions), Siveillance Identity V1.5 (All versions), Siveillance Identity V1.6 (All version…
- CVE-2021-44525CRITICALCVSS 9.8EG 9.82021-12-20
Zoho ManageEngine PAM360 before build 5303 allows attackers to modify a few aspects of application state because of a filter bypass in which authentication is not required.
- CVE-2021-44526CRITICALCVSS 9.8EG 9.82021-12-23
Zoho ManageEngine ServiceDesk Plus before 12003 allows authentication bypass in certain admin configurations.
- CVE-2021-44675CRITICALCVSS 9.8EG 9.82021-12-20
Zoho ManageEngine ServiceDesk Plus MSP before 10.5 Build 10534 is vulnerable to unauthenticated remote code execution due to a filter bypass in which authentication is not required.
- CVE-2021-44676CRITICALCVSS 9.8EG 9.82021-12-20
Zoho ManageEngine Access Manager Plus before 4203 allows anyone to view a few data elements (e.g., access control details) and modify a few aspects of the application state.
- CVE-2021-44736CRITICALCVSS 9.8EG 9.82022-01-20
The initial admin account setup wizard on Lexmark devices allow unauthenticated access to the “out of service erase” feature.
- CVE-2021-44757CRITICALCVSS 9.1EG 9.12022-01-18
Zoho ManageEngine Desktop Central before 10.1.2137.9 and Desktop Central MSP before 10.1.2137.9 allow attackers to bypass authentication, and read sensitive information or upload an arbitrary ZIP archive to the server.
- CVE-2021-44759HIGHCVSS 8.1EG 8.12022-03-23
Improper Authentication vulnerability in TLS origin validation of Apache Traffic Server allows an attacker to create a man in the middle attack. This issue affects Apache Traffic Server 8.0.0 to 8.1.0.
- CVE-2021-44848MEDIUMCVSS 5.3EG 5.32021-12-13
In Cibele Thinfinity VirtualUI before 3.0, /changePassword returns different responses for invalid authentication requests depending on whether the username exists.
- CVE-2021-44937MEDIUMCVSS 5.3EG 5.32021-12-14
glFusion CMS v1.7.9 is affected by an arbitrary user registration vulnerability in /public_html/users.php. An attacker can register with the mailbox of any user. When users want to register, they will find that the mailbox has been occupie…
- CVE-2021-44949CRITICALCVSS 9.8EG 9.82021-12-14
glFusion CMS 1.7.9 is affected by an access control vulnerability via /public_html/users.php.
- CVE-2021-44971CRITICALCVSS 9.8EG 9.82022-01-28
Multiple Tenda devices are affected by authentication bypass, such as AC15V1.0 Firmware V15.03.05.20_multi?AC5V1.0 Firmware V15.03.06.48_multi and so on. an attacker can obtain sensitive information, and even combine it with authenticated …
- CVE-2021-45035MEDIUMCVSS 6.3EG 5.92022-09-23
Velneo vClient on its 28.1.3 version, does not correctly check the certificate of authenticity by default. This could allow an attacker that has access to the network to perform a MITM attack in order to obtain the user´s credentials.
- CVE-2021-45036HIGHCVSS 8.7EG 7.42022-11-28
Velneo vClient on its 28.1.3 version, could allow an attacker with knowledge of the victims's username and hashed password to spoof the victim's id against the server.
- CVE-2021-45079CRITICALCVSS 9.1EG 9.12022-01-31
In strongSwan before 5.9.5, a malicious responder can send an EAP-Success message too early without actually authenticating the client and (in the case of EAP methods with mutual authentication and EAP-only authentication for IKEv2) even w…
- CVE-2021-45331CRITICALCVSS 9.8EG 9.82022-02-09
An Authentication Bypass vulnerability exists in Gitea before 1.5.0, which could let a malicious user gain privileges. If captured, the TOTP code for the 2FA can be submitted correctly more than once.
- CVE-2021-45347HIGHCVSS 7.5EG 7.52022-02-14
An Incorrect Access Control vulnerability exists in zzcms 8.2, which lets a malicious user bypass authentication by changing the user name in the cookie to use any password.
- CVE-2021-45379HIGHCVSS 8.8EG 8.82021-12-30
Glewlwyd 2.0.0, fixed in 2.6.1 is affected by an incorrect access control vulnerability. One user can attempt to log in as another user without its password.
- CVE-2021-45389CRITICALCVSS 9.8EG 9.82022-01-04
A flaw was found with the JWT token. A self-signed JWT token could be injected into the update manager and bypass the authentication process, thus could escalate privileges. This affects StarWind SAN and NAS build 1578 and StarWind Command…
- CVE-2021-45420CRITICALCVSS 9.8EG 9.82022-02-14
Emerson Dixell XWEB-500 products are affected by arbitrary file write vulnerability in /cgi-bin/logo_extra_upload.cgi, /cgi-bin/cal_save.cgi, and /cgi-bin/lo_utils.cgi. An attacker will be able to write any file on the target system withou…
- CVE-2021-45495MEDIUMCVSS 6.5EG 9.82021-12-26
NETGEAR D7000 devices before 1.0.1.68 are affected by authentication bypass.
- CVE-2021-45496CRITICALCVSS 9.1EG 9.82021-12-26
NETGEAR D7000 devices before 1.0.1.82 are affected by authentication bypass.
- CVE-2021-45497CRITICALCVSS 9.4EG 9.82021-12-26
NETGEAR D7000 devices before 1.0.1.82 are affected by authentication bypass.
- CVE-2021-45498MEDIUMCVSS 6.5EG 9.82021-12-26
NETGEAR R6700v2 devices before 1.2.0.88 are affected by authentication bypass.
- CVE-2021-45499HIGHCVSS 8.2EG 8.82021-12-26
Certain NETGEAR devices are affected by authentication bypass. This affects R6900P before 1.3.3.140, R7000P before 1.3.3.140, R7900P before 1.4.2.84, R7960P before 1.4.2.84, R8000P before 1.4.2.84, RAX75 before 1.0.3.106, and RAX80 before …
- CVE-2021-45500CRITICALCVSS 9.6EG 8.82021-12-26
Certain NETGEAR devices are affected by authentication bypass. This affects R7000P before 1.3.3.140 and R8000 before 1.0.4.68.
- CVE-2021-45501CRITICALCVSS 9.4EG 9.82021-12-26
Certain NETGEAR devices are affected by authentication bypass. This affects AC2400 before 1.1.0.84, AC2600 before 1.1.0.84, D7000 before 1.0.1.82, R6020 before 1.0.0.52, R6080 before 1.0.0.52, R6120 before 1.0.0.80, R6220 before 1.1.0.110,…
- CVE-2021-45502CRITICALCVSS 9.6EG 8.82021-12-26
Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6, RBK752 before 3.2.17.12, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, RBR850 before 3…
- CVE-2021-45503CRITICALCVSS 9.6EG 8.82021-12-26
Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, RBR850 before 3.2.17.12, and RBS850 befo…
- CVE-2021-45504CRITICALCVSS 9.6EG 9.82021-12-26
Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, RBR852 before 3.2.17.12, RBR850 before 3.2.17.12, and RBS850 before 3.2.17.12.
- CVE-2021-45505CRITICALCVSS 9.6EG 8.82021-12-26
Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, RBR850 before 3.2.17.12, and RBS850 befo…
- CVE-2021-45506CRITICALCVSS 9.6EG 8.82021-12-26
Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, RBR850 before 3.2.17.12, and RBS850 befo…
- CVE-2021-45507CRITICALCVSS 9.6EG 9.82021-12-26
Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, RBW30 before 2.6.2.2, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17…
- CVE-2021-45508CRITICALCVSS 9.6EG 9.82021-12-26
Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, and RBR850 before…
- CVE-2021-45509CRITICALCVSS 9.6EG 9.82021-12-26
Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, RBR850 before 3.2.17.12, and RBS850 befo…
- CVE-2021-45510HIGHCVSS 8.2EG 8.82021-12-26
NETGEAR XR1000 devices before 1.0.0.58 are affected by authentication bypass.
- CVE-2021-45511MEDIUMCVSS 6.8EG 9.82021-12-26
Certain NETGEAR devices are affected by authentication bypass. This affects AC2100 before 2021-08-27, AC2400 before 2021-08-27, AC2600 before 2021-08-27, D7000 before 2021-08-27, R6220 before 2021-08-27, R6230 before 2021-08-27, R6260 befo…
- CVE-2021-45735HIGHCVSS 7.5EG 7.52022-02-04
TOTOLINK X5000R v9.1.0u.6118_B20201102 was discovered to use the HTTP protocol for authentication into the admin interface, allowing attackers to intercept user credentials via packet capture software.
- CVE-2021-45786CRITICALCVSS 9.8EG 9.82022-03-16
In maccms v10, an attacker can log in through /index.php/user/login in the "col" and "openid" parameters to gain privileges.
- CVE-2021-45841HIGHCVSS 8.1EG 8.12022-04-25
In Terramaster F4-210, F2-210 TOS 4.2.X (4.2.15-2107141517), an attacker can self-sign session cookies by knowing the target's MAC address and the user's password hash. Guest users (disabled by default) can be abused using a null/empty has…
- CVE-2021-45890CRITICALCVSS 9.8EG 9.82021-12-27
basic/BasicAuthProvider.java in AuthGuard before 0.9.0 allows authentication via an inactive identifier.
- CVE-2021-45900MEDIUMCVSS 6.5EG 6.52022-03-30
Vivoh Webinar Manager before 3.6.3.0 has improper API authentication. When a user logs in to the administration configuration web portlet, a VIVOH_AUTH cookie is assigned so that they can be uniquely identified. Certain APIs can be success…
- CVE-2021-45914CRITICALCVSS 9.8EG 9.82022-05-24
In LuxSoft LuxCal Web Calendar before 5.2.0, an unauthenticated attacker can manipulate a POST request. This allows the attacker's session to be authenticated as any registered LuxCal user, including the site administrator.
- CVE-2021-45915CRITICALCVSS 9.8EG 9.82022-05-24
In LuxSoft LuxCal Web Calendar before 5.2.0, an unauthenticated attacker can manipulate a cookie value. This allows the attacker's session to be authenticated as any registered LuxCal user, including the site administrator.
- CVE-2021-45917HIGHCVSS 8.0EG 8.02022-01-03
The server-request receiver function of Shockwall system has an improper authentication vulnerability. An authenticated attacker of an agent computer within the local area network can use the local registry information to launch server-sid…
Map vulnerabilities like CWE-287 to your infrastructure
EchelonGraph correlates every CVE — across CWE-287 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →