The vulnerability of the software tools for managing identification and access control, as well as the ID Link Manager and the resource planning software FUJITSU Software TIME CREATOR, allows a perpetrator to gain unauthorized access to read and modify confidential information.

The vulnerability of the software tools for managing identification and access to the ID Link Manager, as well as the resource planning software FUJITSU Software TIME CREATOR, is related to the lack of authentication checks for a critical function. Exploiting this vulnerability could allow an...

CVE-2024-39364 Advantech ADAM-5630 Missing Authentication for Critical Function

Advantech ADAM-5630 has built-in commands that can be executed without authenticating the user. These commands allow for restarting the operating system, rebooting the hardware, and stopping the execution. The commands can be sent to a simple HTTP request and are executed by the device...

CVE-2024-39364 Advantech ADAM-5630 Missing Authentication for Critical Function

Advantech ADAM-5630 has built-in commands that can be executed without authenticating the user. These commands allow for restarting the operating system, rebooting the hardware, and stopping the execution. The commands can be sent to a simple HTTP request and are executed by the device...

CVE-2024-6981 OMNTEC Proteus Tank Monitoring Missing Authentication for Critical Function

OMNTEC Proteus Tank Monitoring OEL8000III Series could allow an attacker to perform administrative actions without proper authentication...

The vulnerability of the Ivanti EPM endpoint management software lies in the lack of authentication for a critical function, allowing a malicious actor to trigger a service failure.

The vulnerability of the Ivanti EPM endpoint management software lies in the lack of authentication for a critical function. Exploiting this vulnerability could allow a remote attacker to cause service failures...

The vulnerability of the Ivanti EPM endpoint management software lies in the lack of authentication for a critical function, allowing a hacker to alter the network isolation status of managed devices.

The vulnerability of the Ivanti EPM endpoint management software lies in the lack of authentication for a critical function. Exploiting this vulnerability could allow a remote attacker to alter the network isolation status of the managed devices...

CVE-2023-37226

Loftware Spectrum before 4.6 HF14 has Missing Authentication for a Critical Function...

CVE-2023-37226

Loftware Spectrum before 4.6 HF14 has Missing Authentication for a Critical Function...

PT-2024-12594 · Loftware · Loftware Spectrum

Name of the Vulnerable Software and Affected Versions: Loftware Spectrum versions prior to 4.6 HF14 Description: The issue is related to Missing Authentication for a Critical Function. There is no information provided about the estimated number of potentially affected devices worldwide or...

CVE-2024-7015

Missing Authentication for Critical Function vulnerability in Profelis Informatics and Consulting PassBox allows Authentication Abuse.This issue affects PassBox: before v1.2...

CVE-2024-7015

Missing Authentication for Critical Function vulnerability in Profelis Informatics and Consulting PassBox allows Authentication Abuse. This issue affects PassBox: before v1.2...

DiCal-RED 4009 Missing Authentication

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2024-035 Product: DiCal-RED Manufacturer: Swissphone Wireless AG Affected Versions: Unknown Tested Versions: 4009 Vulnerability Type: Missing Authentication for Critical Function CWE-306 Risk Level: High Solution Status: Open...

GO-2023-2051 Answer Missing Authentication for Critical Function in github.com/answerdev/answer

Answer Missing Authentication for Critical Function in github.com/answerdev/answer...

The vulnerability of the Palo Alto Networks Expedition configuration migration tool, related to the lack of authentication for a critical function, allows a perpetrator to obtain administrator credentials.

The vulnerability of the Palo Alto Networks Expedition configuration migration tool is related to the absence of authentication for a critical function. Exploiting this vulnerability could allow a malicious actor, operating remotely, to obtain the administrator account...

CVE-2024-43272

Missing Authentication for Critical Function vulnerability in icegram Icegram allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Icegram: from n/a through 3.1.24...

PT-2024-30436 · Icegram · Icegram

Name of the Vulnerable Software and Affected Versions: Icegram versions n/a through 3.1.24 Description: The issue affects Icegram, allowing access to functionality not properly constrained by ACLs due to a Missing Authentication for Critical Function. Recommendations: For versions n/a through...

The vulnerability of the Siemens RUGGEDCOM CROSSBOW access control system lies in the lack of authentication for a critical function, allowing attackers to trigger a service failure.

The vulnerability of the Siemens RUGGEDCOM CROSSBOW access control system lies in the absence of authentication for a critical function. Exploiting this vulnerability could allow an attacker, operating remotely, to cause service interruptions...

The vulnerability of the Packet Forwarding Engine (PFE) module in Juniper Networks’ Junos OS-based routers of the MX, MX-SPC3, and SRX series allows a attacker to compromise the integrity and accessibility of protected information.

The vulnerability of the Packet Forwarding Engine PFE module in Juniper Networks’ Junos OS-based routers of the MX, MX-SPC3, and SRX series is related to the absence of authentication for a critical function. Exploiting this vulnerability allows an attacker to compromise the integrity and...

The vulnerability of the Windows Update Stack component of the Microsoft Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Windows Update Stack component in the Microsoft Windows operating system is related to the lack of authentication for a critical function. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the corporate version of the PowerPanel Enterprise monitoring and power source management system lies in the lack of authentication for critical functions, allowing attackers to gain unauthorized access to the application.

The vulnerability of the corporate version of the PowerPanel Enterprise monitoring and power source management system is related to the lack of authentication for a critical function. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to the...