Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-287

CWE-287

High likelihood

Improper Authentication

Parent: CWE-284 - Improper Access Control

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

4,376 vulnerabilities with CWE-287

LifeSize Room Appliance Software - Authentication Bypass via AMF Data in gateway.php

RSA Adaptive Authentication On-Premise Authenticated Authentication Bypass via Session Reuse

TORQUE Resource Manager < 3.0.1 - Unauthenticated Job Submission via PBS_O_HOST Variable

VMware tc Server 2.0.x-2.0.6 & 2.1.x-2.1.2 - Improper Authentication via Obfuscated Password

FreeRADIUS 2.1.11 - Authentication Bypass via OCSP Reply Parsing

Google Chrome < 13.0.782.107 - Credential Capture via Basic Authentication Dialog

Progea Movicon 11.2 - Unauthenticated Remote Code Execution and Denial of Service via TCP Port 10651

AzeoTech DAQFactory < 5.85 - Unauthenticated Denial of Service via Signal Handling

IBM Tivoli Directory Server < 6.2.0.3-TIV-ITDS-IF0004 - Unauthenticated Sensitive Information Exposure via IDSWebApp

ManageEngine ServiceDesk Plus 8.0 - Unauthenticated Arbitrary File Read via FileDownload.jsp

Frams' F*EX <20110610 - Auth Bypass

SSSD 1.5.x < 1.5.7 - Kerberos Authentication Bypass via Temporary File Pathname

MediaWiki < 1.16.5 - Authentication Bypass via Cached User Data

SmarterStats 6.0 - Improper Authentication via Password Field Autocomplete

Proofpoint Messaging Security Gateway < 6.2.0.263 & Protection Server 5.5.3-6.2.0 - Authentication Bypass

NetGear ProSafe WNAP210 <2.0.12 - Auth Bypass

IBM AIX 6.1 - Unauthenticated Authentication Bypass via LDAP Login

Nokia E75 <211.12.01 - Auth Bypass

IBM Lotus Domino - Unauthenticated Administrative Access via Server Console

IBM Lotus Domino <8.x - Auth Bypass

OpenLDAP 2.4.x < 2.4.24 - Unauthenticated Improper Authentication via Root DN

nss-pam-ldapd 0.8.0 - Improper Authentication via PAM Module

Domain Technologie Control < 0.32.9 - Unauthenticated Sensitive Information Exposure via Bandwidth Endpoints

HP Multifunction Peripheral Digital Sending Software 4.91.00 - Improper Authentication

Red Hat Network Satellite Server 5.4 - Improper Authentication via Missing Login Delay

Previous Page 153 of 176 Next

Details

Vulnerabilities 4,376

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy