Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-1390

CWE-1390

Weak Authentication

Parent: CWE-287 - Improper Authentication

The product uses an authentication mechanism to restrict access to specific users or identities, but the mechanism does not sufficiently prove that the claimed identity is correct.

75 vulnerabilities with CWE-1390

CVE-2024-47397 HIGH

AE1021 <2.0.10 - Auth Bypass

CVE-2024-49019 HIGH

Active Directory Certificate Services - Privilege Escalation

CVE-2024-45367 CRITICAL

ONS-S8 - Spectra Aggregation Switch - Auth Bypass

CVE-2024-47127 MEDIUM

goTenna Pro App - Code Injection

CVE-2024-41722 MEDIUM

goTenna Pro ATAK Plugin - Code Injection

CVE-2024-8322 MEDIUM

Ivanti EPM <2022 SU6-2024 September - Auth Bypass

CVE-2024-38239 HIGH

Windows Kerberos - Privilege Escalation

CVE-2024-38182 CRITICAL

Microsoft Dynamics 365 - Privilege Escalation

CVE-2024-6580 MEDIUM

IPWorks SSH <24.0.8945 - Path Traversal

CVE-2024-39848 CRITICAL

Internet2 Grouper <5.6 - Auth Bypass

CVE-2024-29038 MEDIUM

tpm2-tools - Info Disclosure

CVE-2024-34451 CRITICAL

Ghost <5.85.1 - Auth Bypass

CVE-2024-5891 MEDIUM

Quay - Auth Bypass

CVE-2024-35248 HIGH

Microsoft Dynamics 365 Business Central - Authentication Bypass

CVE-2024-36787 HIGH

Netgear WNR614 JNR1010V2 N300-V1.1.0.54_1.0.1 - Auth Bypass

CVE-2024-29837 HIGH

Evolution Controller <2.04.560.31.03.2024 - Info Disclosure

CVE-2024-0822 HIGH

overt-engine - Auth Bypass

CVE-2023-53894 CRITICAL

phpfm 1.7.9 - Auth Bypass

CVE-2023-41862 MEDIUM

Guido VS Contact Form <14.0 - Auth Bypass

CVE-2023-49340 CRITICAL

Newland Nquire 1000 Interactive Kiosk <V1.00.011 - Privilege Escala...

CVE-2023-4094 MEDIUM

ARCONTE Aurea 1.5.0.0 - DoS

CVE-2023-41900 LOW

Eclipse Jetty < 9.4.52 - Authentication Bypass

CVE-2023-24890 MEDIUM

Microsoft OneDrive - Privilege Escalation

CVE-2022-45860 MEDIUM

Fortinet Fortinac < 9.2.6 - Authentication Bypass

CVE-2022-43400 CRITICAL

Siveillance Video Mobile Server <V2022 R2 - Info Disclosure

Previous Page 3 of 3

Details

Vulnerabilities 75

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy