Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-306

CWE-306

High likelihood

Missing Authentication for Critical Function

Parent: CWE-287 - Improper Authentication

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

2,452 vulnerabilities with CWE-306

CVE-2020-0052 MEDIUM

Android 10 - Unauthenticated SMS Sending via Lock Screen Permissions Bypass

CVE-2020-5328 CRITICAL

Dell EMC Isilon OneFS < 8.2.0 - Unauthenticated Unauthorized Access via SyncIQ

CVE-2020-9544 HIGH

D-Link DSL-2640B E1 EU_1.01 - Unauthenticated Firmware Update

CVE-2020-9330 HIGH

Xerox WorkCentre Multiple Models Firmware < 073.xxx.000.02300 - LDAP Bind Credential Change Auth Bypass

CVE-2020-5326 MEDIUM

Dell Client Platforms - BIOS Setup Authentication Bypass via iRST Manager Optimized Defaults

CVE-2020-6186 HIGH

SAP Host Agent 7.21 - Denial of Service via Authentication Request Processing

CVE-2020-6769 CRITICAL

Bosch Video Streaming Gateway 6.42.10-6.45.08 - Unauthenticated Arbitrary Configuration Retrieval and Modification

CVE-2020-8636 CRITICAL

OpServices OpMon 9.3.2 - Remote Code Execution

CVE-2020-7954 HIGH

OpServices OpMon 9.3.2 - Privilege Escalation

CVE-2020-7953 HIGH

OpServices OpMon <9.3.2 - Info Disclosure

CVE-2020-3142 HIGH

Cisco Webex Meetings Suite/Cisco Webex Meetings Online - Info Discl...

CVE-2020-7964 MEDIUM

Mirumee Saleor <2.9.1 - Info Disclosure

CVE-2020-6964 HIGH

GE Healthcare ApexPro/CARESCAPE Telemetry Server <4.2 - Unauthenticated Remote Keyboard Input

CVE-2020-7048 CRITICAL

WP Database Reset < 3.1 - Unauthenticated Database Table Reset via admin-post.php

CVE-2020-6170 CRITICAL

Genexis Platinum-4410 <2.1 - Auth Bypass

CVE-2019-25738 CRITICAL

WordPress Hybrid Composer 1.4.6 Unauthenticated Settings Change

CVE-2019-25686 HIGH

Core FTP 2.0 build 653 PBSZ Unauthenticated Denial of Service

CVE-2019-25678 HIGH

C4G BLIS 3.4 SQL Injection via users_select.php

CVE-2019-25632 MEDIUM

phpFileManager 1.7.8 Local File Inclusion via index.php

CVE-2019-25568 CRITICAL

Memu Play 6.0.7 Privilege Escalation via Insecure File Permissions

CVE-2019-25483 HIGH

Comtrend AR-5310 GE31-412SSG-C01_R10.A2pG039u.d24k - Command Injection

CVE-2019-25248 HIGH

Beward N100 M2.1.6.04C014 - Info Disclosure

CVE-2019-25240 CRITICAL

Rifatron 5brid DVR - Unauthenticated Access

CVE-2019-25236 CRITICAL

iSeeQ Hybrid DVR WH-H4 1.03R - Info Disclosure

CVE-2019-25227 HIGH

Tellion HN-2204AP - Info Disclosure

Previous Page 83 of 99 Next

Details

Vulnerabilities 2,452

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy