Falhas do tipo CWE-306
1.715 resultadosCVE-2026-1453CRITICALMissing Authentication for Critical Function in KiloView Encoder SeriesEPSS 0.5%CVE-2026-1341CRITICALMissing Authentication for Critical Function in Avation Light Engine ProEPSS 0.5%CVE-2025-46275CRITICALPlanet Technology Network Products Missing Authentication for Critical FunctionEPSS 0.5%CVE-2025-63390MEDIUMAn authentication bypass vulnerability exists in AnythingLLM v1.8.5 in via the /api/workspaces endpoint. The endpoint fails to implement proEPSS 0.5%CVE-2025-65824HIGHAn unauthenticated attacker within proximity of the Meatmeet device can perform an unauthorized Over The Air (OTA) firmware upgrade using BlEPSS 0.5%CVE-2025-63958CRITICALMILLENSYS Vision Tools Workspace 6.5.0.2585 exposes a sensitive configuration endpoint (/MILLENSYS/settings) that is accessible without authEPSS 0.5%CVE-2024-22415HIGHUnsecured endpoints in the jupyter-lsp server extensionEPSS 0.5%CVE-2019-25227HIGHTellion HN-2204AP Unauthenticated Configuration DisclosureEPSS 0.5%CVE-2026-33038HIGHAVideo affected by unauthenticated application takeover via exposed web installer on uninitialized deploymentsEPSS 0.5%CVE-2025-66555HIGHAirKeyboard iOS App 1.0.5 - Remote Input InjectionEPSS 0.5%CVE-2026-31242CRITICALThe mem0 v1.0.0 server lacks authentication and authorization controls for its memory reset functionality accessible via the DELETE /memorieEPSS 0.5%CVE-2025-34222CRITICALVasion Print (formerly PrinterLogic) Unauthenticated Admin APIs Used to Modify SSL CertificatesEPSS 0.5%CVE-2025-8861CRITICALChanging|TSA - Missing AuthenticationEPSS 0.5%CVE-2022-23862HIGHA Local Privilege Escalation issue was discovered in Y Soft SAFEQ 6 Build 53. The SafeQ JMX service running on port 9696 is vulnerable to JMEPSS 0.5%CVE-2024-4428MEDIUMSensetive Data Exposure in Menulux Managment PortalEPSS 0.5%CVE-2025-40664CRITICALMissing authentication vulnerability in TCMAN GIM v11EPSS 0.5%CVE-2024-54983CRITICALAn issue in Quectel BC95-CNV V100R001C00SPC051 allows attackers to bypass authentication via a crafted NAS message.EPSS 0.5%CVE-2024-54984CRITICALAn issue in Quectel BG96 BG96MAR02A08M1G allows attackers to bypass authentication via a crafted NAS message. NOTE: this is disputed by the EPSS 0.5%CVE-2022-0878MEDIUMNovel attack against the Combined Charging System (CCS) in electric vehicles to remotely cause a denial of serviceEPSS 0.5%CVE-2026-32646HIGHGardyn Cloud API Missing Authentication for Critical FunctionEPSS 0.5%