Weaknesses of type CWE-306
1,717 resultsCVE-2026-32646HIGHGardyn Cloud API Missing Authentication for Critical FunctionEPSS 0.5%CVE-2022-0878MEDIUMNovel attack against the Combined Charging System (CCS) in electric vehicles to remotely cause a denial of serviceEPSS 0.5%CVE-2024-54984CRITICALAn issue in Quectel BG96 BG96MAR02A08M1G allows attackers to bypass authentication via a crafted NAS message. NOTE: this is disputed by the EPSS 0.5%CVE-2025-40664CRITICALMissing authentication vulnerability in TCMAN GIM v11EPSS 0.5%CVE-2025-40771CRITICALA vulnerability has been identified in SIMATIC CP 1542SP-1 (6GK7542-6UX00-0XE0) (All versions < V2.4.24), SIMATIC CP 1542SP-1 IRC (6GK7542-6EPSS 0.5%CVE-2024-48791HIGHAn issue in Plug n Play Camera com.starvedia.mCamView.zwave 5.5.1 allows a remote attacker to obtain sensitive information via the firmware EPSS 0.5%CVE-2025-62582CRITICALDIAView - Authentication Bypass VulnerabilityEPSS 0.5%CVE-2024-52438HIGHWordPress de:branding plugin <= 1.0.2 - Privilege Escalation vulnerabilityEPSS 0.5%CVE-2024-52437HIGHWordPress Banner System plugin <= 1.0.0 - Privilege Escalation vulnerabilityEPSS 0.5%CVE-2023-0919HIGHMissing Authentication for Critical Function in kareadita/kavitaEPSS 0.5%CVE-2024-41969HIGHWAGO: CODESYS V3 Configuration Authentication Bypass in Multiple DevicesEPSS 0.5%CVE-2026-35286CRITICALVulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware (component: Content Server). Supported versions that are EPSS 0.5%CVE-2026-46801CRITICALVulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware (component: WebCenter Sites). Supported versions that are aEPSS 0.5%CVE-2026-25192CRITICALCTEK Chargeportal Missing Authentication for Critical FunctionEPSS 0.5%CVE-2026-46905CRITICALVulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web Runtime Security). Supported versions thatEPSS 0.5%CVE-2026-35296CRITICALVulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware (component: WebCenter Sites). Supported versions that are aEPSS 0.5%CVE-2026-46909CRITICALVulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Enterprise Infrastructure Security). SupportedEPSS 0.5%CVE-2026-35292CRITICALVulnerability in the WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are 14.EPSS 0.5%CVE-2026-35293CRITICALVulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware (component: WebCenter Sites). The supported version that iEPSS 0.5%CVE-2026-46798CRITICALVulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware (component: WebCenter Sites). Supported versions that are aEPSS 0.5%