Weaknesses of type CWE-306
1,722 resultsCVE-2026-25885CRITICALPolarLearn allows Unauthenticated WebSocket access allows subscribing to and posting in arbitrary group chatsEPSS 0.3%CVE-2025-60856MEDIUMReolink Video Doorbell WiFi DB_566128M5MP_W allows root shell access through an unsecured UART/serial console. An attacker with physical accEPSS 0.3%CVE-2024-36457MEDIUMSymantec Privileged Access Manager Authentication Bypass vulnerabilityEPSS 0.3%CVE-2026-40461HIGHAnviz Products Missing Authentication for Critical FunctionEPSS 0.3%CVE-2023-2827HIGHMissing Authentication in SAP Plant Connectivity and Production Connector for SAP DigitalEPSS 0.3%CVE-2025-13779HIGHConfiguration Data SpillEPSS 0.3%CVE-2025-42885MEDIUMMissing authentication in SAP HANA 2.0 (hdbrss)EPSS 0.3%CVE-2026-26319HIGHOpenClaw has Missing Webhook Authentication in Telnyx Provider Allowing Unauthenticated RequestsEPSS 0.3%CVE-2018-25140CRITICALFLIR Thermal Traffic Cameras V1.01-0bb5b27 Unauthenticated Websocket Device ManipulationEPSS 0.3%CVE-2026-46826HIGHVulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affectEPSS 0.3%CVE-2025-53847MEDIUMA missing authentication for critical function vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7EPSS 0.3%CVE-2025-23194MEDIUMMissing Authentication check in SAP NetWeaver Enterprise Portal (OBN component)EPSS 0.3%CVE-2026-44775MEDIUMKavita: No authentication at /api/Reader/imageEPSS 0.3%CVE-2025-3498CRITICALUnauthenticated modification of Radiflow iSAP Smart Collector configurationEPSS 0.3%CVE-2025-42926MEDIUMMissing Authentication check in SAP NetWeaver Application Server JavaEPSS 0.3%CVE-2026-3207HIGHTIBCO BPM Enterprise Remote Code Execution (RCE) VulnerabilityEPSS 0.3%CVE-2026-5768HIGHFourth Frontier Frontier X Mobile Application, Frontier X2 Missing Authentication for Critical FunctionEPSS 0.3%CVE-2025-54850HIGHA denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A speEPSS 0.3%CVE-2025-54849HIGHA denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A speEPSS 0.3%CVE-2020-3335MEDIUMCisco Application Services Engine Software Authorization VulnerabilityEPSS 0.3%