Fallos del tipo CWE-306
1707 resultadosCVE-2025-4268MEDIUMTOTOLINK A720R cstecgi.cgi missing authenticationEPSS 0.9%CVE-2016-15046HIGHHanwha Techwin SSM 1.32 & 1.4 ActiveMQ File Upload RCEEPSS 0.9%CVE-2023-20857MEDIUMVMware Workspace ONE Content contains a passcode bypass vulnerability. A malicious actor, with access to a users rooted device, may be able EPSS 0.9%CVE-2020-36892CRITICALEibiz i-Media Server Digital Signage 3.8.0 Unauthenticated Privilege EscalationEPSS 0.9%CVE-2024-2076MEDIUMCodeAstro House Rental Management System tenant.php missing authenticationEPSS 0.9%CVE-2023-51987CRITICALD-Link DIR-822+ V1.0.2 contains a login bypass in the HNAP1 interface, which allows attackers to log in to administrator accounts with emptyEPSS 0.9%CVE-2025-34224CRITICALVasion Print (formerly PrinterLogic) Unauthenticated Device ModificationEPSS 0.9%CVE-2024-9164CRITICALMissing Authentication for Critical Function in GitLabEPSS 0.9%CVE-2016-6540—TrackR Bravo is missing authentication for the cloud service and allows querying or sending of GPS data from unauthenticated usersEPSS 0.9%CVE-2024-33616MEDIUMAdmin authentication can be bypassed with some specific invalid credentials, which allows logging in with an administrative privilege. SharpEPSS 0.9%CVE-2025-32978HIGHQuest KACE Systems Management Appliance (SMA) 13.0.x before 13.0.385, 13.1.x before 13.1.81, 13.2.x before 13.2.183, 14.0.x before 14.0.341 EPSS 0.9%CVE-2016-9496—Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, lacks authentication to access certain pagesEPSS 0.9%CVE-2023-27571MEDIUMAn issue was discovered in DG3450 Cable Gateway AR01.02.056.18_041520_711.NCS.10. The troubleshooting_logs_download.php log file download fuEPSS 0.9%CVE-2025-20358CRITICALCisco Unified Contact Center Express Editor Authentication Bypass VulnerabilityEPSS 0.9%CVE-2019-10915—A vulnerability has been identified in TIA Administrator (All versions < V1.0 SP1 Upd1). The integrated configuration web application (TIA AEPSS 0.9%CVE-2026-20223CRITICALCisco Secure Workload Unauthorized API Access VulnerabilityEPSS 0.9%CVE-2025-34068CRITICALSamsung WLAN AP WEA453e < 5.2.4.T1 Unauthenticated RCE via command1 and command2 ParametersEPSS 0.9%CVE-2021-34870MEDIUMThis vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR XR1000 1.0.0.52_EPSS 0.9%CVE-2025-34104CRITICALPiwik Authenticated RCE via Custom Plugin UploadEPSS 0.9%CVE-2026-22552CRITICALePower epower.ie Missing Authentication for Critical FunctionEPSS 0.9%