Falhas do tipo CWE-306
1.708 resultadosCVE-2023-26573HIGHMissing Authentication In IDAttend’s IDWeb ApplicationEPSS 0.7%CVE-2026-23662HIGHAzure IoT Explorer Information Disclosure VulnerabilityEPSS 0.7%CVE-2026-25505CRITICALBambuddy Uses Hardcoded Secret Key + Many API Endpoints do not Require AuthenticationEPSS 0.7%CVE-2023-4505LOWStaff / Employee Business Directory for Active Directory <= 1.2.3 - Authenticated (Admin+) LDAP PassbackEPSS 0.7%CVE-2023-4506LOWActive Directory Integration / LDAP Integration <= 4.1.10 - LDAP PassbackEPSS 0.7%CVE-2024-8310CRITICALOPW Fuel Management Systems SiteSentinel Missing Authentication for Critical FunctionEPSS 0.7%CVE-2026-45397MEDIUMOpen WebUI: Unauthenticated RAG Configuration DisclosureEPSS 0.7%CVE-2025-55108CRITICALBMC Control-M/Agent default configuration does not enforce SSL/TLS allowing unauthorized actions and remote code executionEPSS 0.7%CVE-2025-61956CRITICALMissing Authentication for Critical Function in Radiometrics VizAirEPSS 0.7%CVE-2026-42302CRITICALFastGPT: Unauthenticated Remote Code Execution (RCE) via code-server Misconfiguration in agent-sandboxEPSS 0.7%CVE-2023-49255CRITICALRouter console accessible without authenticationEPSS 0.7%CVE-2026-12046CRITICALpgAdmin 4: Unauthenticated pickle deserialization in SQL Editor close / update_connection routes enables remote code executionEPSS 0.7%CVE-2024-31218CRITICALMissing Authentication for Critical Function in Webhood backendEPSS 0.7%CVE-2026-24124HIGHDragonfly Manager Job API Allows Unauthenticated AccessEPSS 0.7%CVE-2022-42970CRITICALA CWE-306: Missing Authentication for Critical Function The software does not perform any authentication for functionality that requires a pEPSS 0.7%CVE-2023-29413HIGH
A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause
Denial-of-Service when accessed by an unautheEPSS 0.7%CVE-2021-37697HIGHSensitive information leak in Welcome of tmerc-cogsEPSS 0.7%CVE-2021-37696HIGHSensitive information leak in MassDM of tmerc-cogsEPSS 0.7%CVE-2023-0052CRITICALSAUTER Controls Nova 200–220 Series Missing Authentication for Critical FunctionEPSS 0.7%CVE-2026-11420CRITICALPath Traversal in Altium Enterprise Server NIS Allows Unauthenticated Arbitrary File Write and File ReadEPSS 0.7%