CWE-306

High likelihood

Missing Authentication for Critical Function

Parent: CWE-287 - Improper Authentication

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

2,453 vulnerabilities with CWE-306
CVE-2006-0061 CRITICAL
xlockmore <5.13,5.22 - Privilege Escalation
CVSS 9.8
CVE-2004-0213 HIGH
Windows 2000 - Privilege Escalation via Utility Manager Shatter Attack
CVSS 7.8
CVE-2002-1810 HIGH
D-Link DWL-900AP+ Firmware 2.1-2.2 - Unauthenticated Sensitive Information Exposure via TFTP Server
CVSS 7.5
Details
Vulnerabilities 2,453
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits