CWE-287

High likelihood

Improper Authentication

Parent: CWE-284 - Improper Access Control

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

4,372 vulnerabilities with CWE-287
CVE-2020-9070 MEDIUM
Huawei Taurus-AL00B Firmware < 10.0.0.205(C00E201R7P2) - Improper Authentication
CVSS 5.5
CVE-2020-1803 MEDIUM
Huawei Honor V20 <10.0.0.179-180 - Info Disclosure
CVSS 5.3
CVE-2020-7276 MEDIUM
McAfee Endpoint Security for Windows - Authentication Bypass via MfeUpgradeTool
CVSS 6.4
CVE-2020-8148 MEDIUM
UniFi Cloud Key <1.1.6 - Info Disclosure
CVSS 5.3
CVE-2020-1801 MEDIUM
Huawei Mate 30 and Mate 30 Pro Firmware < 10.0.0.205 - Improper Authentication
CVSS 5.5
CVE-2020-8828 HIGH
Argocd-server <1.5.0 - Privilege Escalation
CVSS 8.8
CVE-2020-1637 HIGH
Juniper Junos OS on SRX Series Improper Authentication via IP Address Range Configuration
CVSS 7.2
CVE-2020-1618 MEDIUM
Juniper Junos OS Authentication Bypass via Console Port
CVSS 6.3
CVE-2020-11542 CRITICAL
3xLOGIC Infinias eIDC32 2.213 with Web 1.107 - Authentication Bypass via CMD.HTM Endpoint
CVSS 9.8
CVE-2020-5860 HIGH
F5 BIG-IP and BIG-IQ - Cleartext Transmission of Sensitive Information in HA Network Failover Traffic
CVSS 8.1
CVE-2020-9066 HIGH
Huawei OxfordP-AN10B Firmware < 10.0.1.169(C00E166R4P1) - Improper Authentication via Malicious Plug-in Installation
CVSS 7.8
CVE-2020-10965 HIGH
Teradici PCoIP Management Console <20.01.0, 19.11.1 - Auth Bypass
CVSS 8.1
CVE-2020-10888 CRITICAL
TP-Link Archer A7 Firmware <190726 - Auth Bypass
CVSS 9.8
CVE-2020-10847 MEDIUM
Samsung Galaxy S8/Note8 - Info Disclosure
CVSS 6.8
CVE-2020-10846 MEDIUM
Samsung mobile <P(9.x),Q(10.x) - Info Disclosure
CVSS 5.5
CVE-2020-8863 HIGH
D-Link DIR-867,DIR-878,DIR-882 <1.10B04 - Auth Bypass
CVSS 8.8
CVE-2020-1878 MEDIUM
Huawei smartphone OxfordS-AN00A <10.0.1.152D(C735E152R3P3),<10.0.1....
CVSS 5.5
CVE-2020-1864 HIGH
Huawei Secospace AntiDDoS8000 - Auth Bypass
CVSS 8.1
CVE-2020-1794 MEDIUM
HUAWEI Mate 20 <10.0.0.188 - Info Disclosure
CVSS 4.6
CVE-2020-1793 MEDIUM
HUAWEI Mate 20 <10.0.0.188 - Info Disclosure
CVSS 4.6
CVE-2020-10669 HIGH
Canon Oce Colorwave 500 4.0.0.0 - Auth Bypass
CVSS 7.5
CVE-2020-4205 MEDIUM
IBM DataPower Gateway 2018.4.1.0-2018.4.1.8 - Authenticated Security Restriction Bypass via Revoked Certificate
CVSS 6.3
CVE-2020-6988 HIGH
Rockwell Automation MicroLogix 1400 A/B <21.001 and 1100, RSLogix 500 <12.001 - Credential Disclosure
CVSS 7.5
CVE-2020-10594 CRITICAL
drf-jwt <1.15.1 - Auth Bypass
CVSS 9.1
CVE-2020-9064 MEDIUM
Huawei Honor V30 Firmware < OxfordS-AN00A 10.0.1.167(C00E166R4P1) - Improper Authentication
CVSS 5.5
Details
Vulnerabilities 4,372
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits