Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-306

CWE-306

High likelihood

Missing Authentication for Critical Function

Parent: CWE-287 - Improper Authentication

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

2,452 vulnerabilities with CWE-306

CVE-2019-25226 HIGH

Dongyoung Media DM-AP240T/W - Info Disclosure

CVE-2019-10941 MEDIUM

SINEMA Server < V14 SP3 - Unauthenticated System Configuration Backup File Access

CVE-2019-25020 HIGH

Scytl sVote 2.1 - Unauthenticated Administrative Configuration Exposure via sdm-ws-rest API

CVE-2019-11684 CRITICAL

Bosch VRM - Improper Access Control

CVE-2019-16004 MEDIUM

Cisco Vision Dynamic Signage Director - Auth Bypass

CVE-2019-5591 MEDIUM KEV

FortiOS < 6.2.0 - Unauthenticated Sensitive Information Interception via LDAP Server Impersonation

CVE-2019-18666 CRITICAL

D-Link DAP-1360 Revision F Firmware < 6.12b01 - Unauthenticated Telnet Service Activation

CVE-2019-5620 CRITICAL

MicroSCADA Pro SYS600 9.3 - Missing Authentication for Critical Function

CVE-2019-19104 CRITICAL

ABB Telephone Gateway TG/S 3.2 - Info Disclosure

CVE-2019-12524 CRITICAL

Squid < 4.7 - Unauthenticated Cache Manager Access via URL Encoding Bypass

CVE-2019-16879 CRITICAL

HUSKY RTU 6049-E70 <5.0 - Auth Bypass

CVE-2019-19092 LOW

Hitachi Energy eSOMS 4.0-6.0.3 - Viewstate Integrity Bypass via Missing Message Authentication Code

CVE-2019-20624 MEDIUM

Samsung Android N(7.x) and O(8.x) - Unauthenticated Keyboard Learned Words Exposure via S-Voice Lock Screen

CVE-2019-20598 LOW

Android - Unauthenticated Information Disclosure via Bixby Lock Screen

CVE-2019-20595 LOW

Samsung Android P(9.0) - Unauthenticated Bluetooth Stack Toggle via Quick Panel

CVE-2019-20579 LOW

Samsung Android N(7.x)-P(9.0) - Unauthenticated Location Information Sharing via Lock Screen

CVE-2019-20559 LOW

Samsung Android P(9.0) - Unauthenticated Photo Access on Lock Screen

CVE-2019-20550 MEDIUM

Samsung Android O(8.x) - Unauthenticated Access to Locked App Content via S Secure

CVE-2019-20532 MEDIUM

Samsung Android O(8.x) P(9.0) Q(10.0) - Unauthenticated Developer Options Access

CVE-2019-16258 MEDIUM

Homee Brain Cube V2 <2.23.0 - Privilege Escalation

CVE-2019-15655 HIGH

D-Link DSL-2875AL Firmware < 1.00.05 - Unauthenticated Password Disclosure via /romfile.cfg Request

CVE-2019-15654 HIGH

Comba AC2400 Firmware - Unauthenticated Password Disclosure via upcfgAction.php

CVE-2019-12127 CRITICAL

ONAP OOM 3.0.0-4.0.0 - Unauthenticated Access to Services via Exposed Ports

CVE-2019-12126 CRITICAL

ONAP DCAE 3.0.0-4.0.0 - Unauthenticated Full Service Access via Open Ports

CVE-2019-12125 CRITICAL

ONAP 3.0.0-4.0.0 - Unauthenticated Access to ONAP Services via Exposed Ports

Previous Page 84 of 99 Next

Details

Vulnerabilities 2,452

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy