Weaknesses of type CWE-306

1,715 results
CVE-2021-32700CRITICALSupply chain attack via MiTM against usersEPSS 0.6%CVE-2023-24526MEDIUMImproper Access Control in SAP NetWeaver AS Java (Classload Service)EPSS 0.6%CVE-2026-54130CRITICALM365 Copilot Information Disclosure VulnerabilityEPSS 0.6%CVE-2026-35278CRITICALVulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft (component: Performance Monitor). Supported versionsEPSS 0.6%CVE-2023-44152MEDIUMSensitive information disclosure and manipulation due to improper authentication. The following products are affected: Acronis Cyber ProtectEPSS 0.6%CVE-2024-12511HIGHSMB/FTP Address Book Scan Pass-back attackEPSS 0.6%CVE-2026-2417CRITICALMissing Authentication for Critical Function in Pharos Controls Mosaic Show ControllerEPSS 0.6%CVE-2022-45423HIGHSome Dahua software products have a vulnerability of unauthenticated request of MQTT credentials. An attacker can obtain encrypted MQTT credEPSS 0.6%CVE-2025-13510CRITICALIskra iHUB and iHUB Lite has a Missing Authentication for Critical Function vulnerabilitiyEPSS 0.6%CVE-2023-27357MEDIUMNETGEAR RAX30 GetInfo Missing Authentication Information Disclosure VulnerabilityEPSS 0.6%CVE-2023-41918CRITICALMissing Authentication for Critical Function in Kiloview P1/P2 devicesEPSS 0.6%CVE-2026-2165MEDIUMdetronetdip E-commerce Account Creation Endpoint add_seller.php missing authenticationEPSS 0.6%CVE-2021-4469HIGHDenver SHO-110 IP Camera Unauthenticated Snapshot AccessEPSS 0.6%CVE-2018-25134CRITICALSynaccess netBooter NP-02x/NP-08x 6.8 Authentication Bypass via webNewAcct.cgiEPSS 0.6%CVE-2024-26235HIGHWindows Update Stack Elevation of Privilege VulnerabilityEPSS 0.6%CVE-2025-11852MEDIUMApeman ID71 ONVIF Service device_service missing authenticationEPSS 0.6%CVE-2026-25116HIGHRuntipi vulnerable to unauthenticated docker-compose.yml Overwrite via Path TraversalEPSS 0.6%CVE-2022-41271CRITICALAn unauthenticated user can attach to an open interface exposed through JNDI by the Messaging System of SAP NetWeaver Process Integration (PEPSS 0.6%CVE-2024-50589HIGHUnprotected FHIR APIEPSS 0.6%CVE-2025-43994HIGHDell Storage Center - Dell Storage Manager, version(s) DSM 20.1.21, contain(s) a Missing Authentication for Critical Function vulnerability.EPSS 0.6%