Fallos del tipo CWE-303
86 resultadosCVE-2024-7593CRITICALIncorrect implementation of an authentication algorithm in Ivanti vTM other than versions 22.2R1 or 22.7R2 allows a remote unauthenticated aEPSS 100.0%KEVCVE-2023-29357CRITICALMicrosoft SharePoint Server Elevation of Privilege VulnerabilityEPSS 99.6%KEVCVE-2020-8863HIGHThis vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-867, DIR-878, and DIR-EPSS 76.7%CVE-2023-32148MEDIUMD-Link DIR-2640 HNAP PrivateLogin Authentication Bypass VulnerabilityEPSS 27.4%CVE-2023-32152MEDIUMD-Link DIR-2640 HNAP LoginPassword Authentication Bypass VulnerabilityEPSS 27.4%CVE-2022-20695CRITICALCisco Wireless LAN Controller Management Interface Authentication Bypass VulnerabilityEPSS 19.2%CVE-2020-8861HIGHThis vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DAP-1330 1.10B01 BETA Wi-FEPSS 6.5%CVE-2026-41103CRITICALMicrosoft SSO Plugin for Jira & Confluence Elevation of Privilege VulnerabilityEPSS 5.4%CVE-2018-4841—A vulnerability has been identified in TIM 1531 IRC (All versions < V1.1). A remote attacker with network access to port 80/tcp or port 443/EPSS 4.9%CVE-2025-13390CRITICALWP Directory Kit <= 1.4.4 - Authentication Bypass to Privilege Escalation via Account TakeoverEPSS 4.7%CVE-2016-9463—Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.1.2, 9.0.6, and 8.2.9 suffer from SMB User Authentication Bypass. NextcEPSS 4.1%CVE-2020-15632HIGHThis vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-842 3.13B05 routers. AEPSS 3.3%CVE-2024-4985CRITICALAn authentication bypass vulnerability was present in the GitHub Enterprise Server (GHES) when utilizing SAML single sign-on authentication EPSS 2.6%CVE-2025-21311CRITICALWindows NTLM V1 Elevation of Privilege VulnerabilityEPSS 2.3%CVE-2021-21902HIGHAn authentication bypass vulnerability exists in the CMA run_server_6877 functionality of Garrett Metal Detectors iC Module CMA Version 5.0.EPSS 1.7%CVE-2021-21378HIGHJWT authentication bypass with unknown issuer tokenEPSS 1.7%CVE-2025-57808HIGHESP-IDF web_server basic auth bypass using empty or incomplete Authorization headerEPSS 1.5%CVE-2022-41985HIGHAn authentication bypass vulnerability exists in the Authentication functionality of Weston Embedded uC-FTPs v 1.98.00. A specially crafted EPSS 1.5%CVE-2021-32691HIGHAuto-merging Person Records CompromisedEPSS 1.5%CVE-2022-46146MEDIUMPrometheus Exporter Toolkit vulnerable to basic authentication bypassEPSS 1.2%