Weaknesses of type CWE-306

1,720 results
CVE-2022-25770HIGHInsufficient authentication in upgrade flowEPSS 0.3%CVE-2026-2756LOWOmniPEMF NeoRhythm BLE missing authenticationEPSS 0.3%CVE-2025-65828MEDIUMAn unauthenticated attacker within proximity of the Meatmeet device can issue several commands over Bluetooth Low Energy (BLE) to these deviEPSS 0.3%CVE-2025-13778HIGHDevice Reboot ControlEPSS 0.3%CVE-2026-32962MEDIUMSD-330AC and AMC Manager provided by silex technology, Inc. contain a missing authentication for critical function issue. The device configuEPSS 0.3%CVE-2026-32957MEDIUMSD-330AC and AMC Manager provided by silex technology, Inc. contain a missing authentication for critical function issue on firmware maintenEPSS 0.3%CVE-2025-7635HIGHCalix GigaCenter ONT - Unauthenticated TelnetEPSS 0.3%CVE-2025-15346CRITICALwolfSSL Python library `CERT_REQUIRED` mode fails to enforce client certificate requirementEPSS 0.3%CVE-2019-25678HIGHC4G BLIS 3.4 SQL Injection via users_select.phpEPSS 0.3%CVE-2026-42864CRITICALFireFighter: Unauthenticated SSRF in Raid jira_bot endpoint allows IAM credential theftEPSS 0.3%CVE-2024-48952MEDIUMAn issue was discovered in Logpoint before 7.5.0. SOAR uses a static JWT secret key to generate tokens that allow access to SOAR API endpoinEPSS 0.3%CVE-2025-32782MEDIUMAsh Authentication email link auto-click account confirmation vulnerabilityEPSS 0.3%CVE-2024-40408HIGHCybele Software Thinfinity Workspace before v7.0.2.113 was discovered to contain an access control issue in the Create Profile section. ThisEPSS 0.3%CVE-2026-44847HIGHMaxKB: Webhook Trigger Authentication BypassEPSS 0.3%CVE-2026-22192HIGHVoltronic Power SNMP Web Pro 1.1 Authentication Bypass via localStorageEPSS 0.3%CVE-2026-5749HIGHInadequate access control vulnerability in FullstepEPSS 0.3%CVE-2026-9212MEDIUMInsufficient authentication and input validation in certain NETGEAR productsEPSS 0.3%CVE-2026-43881MEDIUMWWBN AVideo: Unauthenticated User Enumeration in `objects/users.json.php` via `isCompany` Parameter Flips `$ignoreAdmin = true` and Defeats Admin-Only Listing GuardEPSS 0.3%CVE-2024-10649MEDIUMUnauthenticated File Upload in wandb/openuiEPSS 0.3%CVE-2026-25751CRITICALFUXA Unauthenticated Exposure of Plaintext Database CredentialsEPSS 0.3%