Fallos del tipo CWE-287
1847 resultadosCVE-2020-8097HIGHImproper authentication vulnerability in Bitdefender Endpoint Security Tools and Endpoint Security SDK (VA-8646)EPSS 0.4%CVE-2025-7115MEDIUMrowboatlabs rowboat Session route.ts PUT missing authenticationEPSS 0.4%CVE-2025-14097HIGHRemote Code Execution Vulnerability in Radiometer ProductsEPSS 0.4%CVE-2026-10617MEDIUMnextlevelbuilder GoClaw Webhook Verification auth.go resolveAuth missing authenticationEPSS 0.4%CVE-2026-21854CRITICALTarkov Data Manager Authentication Bypass vulnerabilityEPSS 0.4%CVE-2025-30214HIGHFrappe vulnerable to information disclosure leading to account takeoverEPSS 0.4%CVE-2024-57490HIGHGuangzhou Hongfan Technology Co., LTD. iOffice20 has any user login vulnerability. An attacker can log in to any system account including thEPSS 0.4%CVE-2025-70833CRITICALAn Authentication Bypass vulnerability in Smanga 3.2.7 allows an unauthenticated attacker to reset the password of any user (including the aEPSS 0.4%CVE-2025-55293CRITICALMeshtastic allows crafting of specific NodeInfo packets that overwrite any publicKey saved in the NodeDBEPSS 0.4%CVE-2026-6126MEDIUMzhayujie chatgpt-on-wechat CowAgent Administrative HTTP Endpoint missing authenticationEPSS 0.4%CVE-2022-35629—Velociraptor Client ID SpoofingEPSS 0.4%CVE-2025-5437MEDIUMMultilaser Sirius RE016 Password Change cstecgi.cgi improper authenticationEPSS 0.4%CVE-2022-22237MEDIUMJunos OS: Peers not configured for TCP-AO can establish a BGP or LDP session even if authentication is configured locallyEPSS 0.4%CVE-2022-39892LOWImproper access control in Samsung Pass prior to version 4.0.05.1 allows attackers to unauthenticated access via keep open feature.EPSS 0.4%CVE-2025-53889MEDIUMDirectus missing permission checks for manual trigger FlowsEPSS 0.4%CVE-2022-41738HIGHIBM Spectrum Scale security bypassEPSS 0.4%CVE-2023-52540HIGHVulnerability of improper authentication in the Iaware module.
Impact: Successful exploitation of this vulnerability will affect availabilitEPSS 0.4%CVE-2026-8031MEDIUMPicoTronica e-Clinic Healthcare System ECHS API Endpoint patient-records missing authenticationEPSS 0.4%CVE-2018-10597—IntelliVue Patient Monitors MP Series (including MP2/X2/MP30/MP50/MP70/NP90/MX700/800) Rev B-M, IntelliVue Patient Monitors MX (MX400-550) REPSS 0.4%CVE-2023-35901LOWIBM Robotic Process Automation security bypassEPSS 0.4%