Weaknesses of type CWE-306

1,720 results
CVE-2025-1272HIGHKernel: secure boot does not automatically enable kernel lockdownEPSS 0.2%CVE-2025-1754MEDIUMMissing Authentication for Critical Function in GitLabEPSS 0.2%CVE-2024-31684LOWIncorrect access control in the fingerprint authentication mechanism of Bitdefender Mobile Security v4.11.3-gms allows attackers to bypass fEPSS 0.2%CVE-2023-0463HIGHThe force offline MFA prompt setting is not respected when switching to offline mode in Devolutions Remote Desktop Manager 2022.3.29 to 2022EPSS 0.2%CVE-2025-48572HIGHIn multiple locations, there is a possible way to launch activities from the background due to a permissions bypass. This could lead to locaEPSS 0.2%KEVCVE-2025-40817HIGHA vulnerability has been identified in LOGO! 12/24RCE (6ED1052-1MD08-0BA2) (All versions), LOGO! 12/24RCEo (6ED1052-2MD08-0BA2) (All versionEPSS 0.2%CVE-2026-10711HIGHRCE in Akınsoft's CafePlusEPSS 0.2%CVE-2025-11130HIGHiHongRen pptp-vpn XPC Service HelperTool.m shouldAcceptNewConnection missing authenticationEPSS 0.2%CVE-2026-13125HIGHGeoVision GeoWebPlayer 1.1.1.0 Websocket Server function vulnerabilityEPSS 0.2%CVE-2025-3759HIGHMissing Authentication for Changing Device Configuration in WF2220EPSS 0.2%CVE-2025-54478HIGHUnauthenticated Channel Subscription Edit in Mattermost Confluence PluginEPSS 0.2%CVE-2025-10906HIGHMagnetism Studios Endurance NSXPC com.MagnetismStudios.endurance.helper loadModuleNamed:WithReply missing authenticationEPSS 0.2%CVE-2025-10672HIGHwhuan132 AIBattery com.collweb.AIBatteryHelper BatteryXPCService.swift missing authenticationEPSS 0.2%CVE-2024-47555HIGHMissing Authentication - User & System ConfigurationEPSS 0.2%CVE-2024-45483HIGHMissing GRUB password in B&R APROLEPSS 0.2%CVE-2025-9312CRITICALImproper Certificate-Based Authentication Enforcement in Multiple WSO2 ProductsEPSS 0.2%CVE-2026-8694MEDIUMImproper access control on the API documentation endpoint in PowerShell UniversalEPSS 0.2%CVE-2025-64307HIGHBrightpick Mission Control / Internal Logic Control Missing Authentication for Critical FunctionEPSS 0.2%CVE-2025-53034MEDIUMVulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications (comEPSS 0.2%CVE-2026-50082MEDIUMAqara Developer Portal insecure authentication tokenEPSS 0.2%