Weaknesses of type CWE-304
31 resultsCVE-2022-1065HIGHMulti Factor Authentication Bypass in various versions of Abacus ERPEPSS 2.8%CVE-2024-2172CRITICALMalware Scanner <= 4.7.2 and Web Application Firewall <= 2.1.1 - Unauthenticated Privilege EscalationEPSS 1.7%CVE-2022-2302CRITICALLENZE: Missing password verification in authorisation procedureEPSS 1.6%CVE-2019-16766HIGH2FA bypass in Wagtail through new device pathEPSS 1.2%CVE-2021-41179MEDIUMTwo-Factor Authentication not enforced for pages marked as publicEPSS 1.2%CVE-2022-2821CRITICALMissing Critical Step in Authentication in namelessmc/namelessEPSS 1.1%CVE-2011-3172MEDIUMunix2_chkpwd do not check for a valid accountEPSS 1.0%CVE-2024-8954CRITICALAuthentication Bypass in composiohq/composioEPSS 0.8%CVE-2023-52424HIGHThe IEEE 802.11 standard sometimes enables an adversary to trick a victim into connecting to an unintended or untrusted network with Home WEEPSS 0.7%CVE-2022-40622—WAVLINK Quantum D4G (WN531G3) Session Management by IP AddressEPSS 0.7%CVE-2024-12048HIGHIDOR Vulnerability in transformeroptimus/superagiEPSS 0.7%CVE-2023-3628MEDIUMInfispan: rest bulk ops don't check permissionsEPSS 0.6%CVE-2024-9216HIGHAuthentication Bypass in gaizhenbiao/ChuanhuChatGPTEPSS 0.6%CVE-2023-3629MEDIUMInfinispan: non-admins should not be able to get cache config via rest apiEPSS 0.6%CVE-2026-40542HIGHApache HttpClient: SCRAM-SHA-256 mutual authentication bypass may cause the client to accept authentication without proper mutual authentication verificationEPSS 0.6%CVE-2025-24322HIGHAn unsafe default authentication vulnerability exists in the Initial Setup Authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A sEPSS 0.5%CVE-2024-45764CRITICALDell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) a Missing Critical Step in Authentication vulnerability. An unauthenticated atEPSS 0.5%CVE-2022-39360MEDIUMMetabase SSO users able to circumvent IdP login by doing password resetEPSS 0.5%CVE-2023-22833HIGHMandatory control bypass in Lime2EPSS 0.4%CVE-2024-7745MEDIUMMulti-Factor Authentication Bypass in Progress WS_FTP ServerEPSS 0.4%