Falhas do tipo CWE-303
86 resultadosCVE-2022-33736—A vulnerability has been identified in Opcenter Quality V13.1 (All versions < V13.1.20220624), Opcenter Quality V13.2 (All versions < V13.2.EPSS 1.1%CVE-2023-34282HIGHD-Link DIR-2150 HNAP Incorrect Implementation of Authentication Algorithm Authentication Bypass VulnerabilityEPSS 1.1%CVE-2023-34274HIGHD-Link DIR-2150 LoginPassword Incorrect Implementation of Authentication Algorithm Authentication Bypass VulnerabilityEPSS 1.1%CVE-2023-3326—Network authentication attack via pam_krb5EPSS 1.1%CVE-2020-5268MEDIUMSubject Confirmation Method not validated in Saml2 Authentication Services for ASP.NETEPSS 1.1%CVE-2024-26248HIGHWindows Kerberos Elevation of Privilege VulnerabilityEPSS 1.0%CVE-2023-44420HIGHD-Link DIR-X3260 prog.cgi Incorrect Implementation of Authentication Algorithm Authentication Bypass VulnerabilityEPSS 0.9%CVE-2023-29129CRITICALA vulnerability has been identified in Mendix SAML (Mendix 7 compatible) (All versions >= V1.17.3 < V1.18.0), Mendix SAML (Mendix 7 compatibEPSS 0.9%CVE-2022-39366CRITICALDataHub missing JWT signature checkEPSS 0.9%CVE-2022-20923MEDIUMCisco Small Business RV110W, RV130, RV130W, and RV215W Routers IPSec VPN Server Authentication Bypass VulnerabilityEPSS 0.8%CVE-2025-66489CRITICALCal.com Authentication Bypass via bad TOTP + password checksEPSS 0.8%CVE-2024-56128MEDIUMApache Kafka: SCRAM authentication vulnerable to replay attacks when used without encryptionEPSS 0.8%CVE-2021-42146HIGHAn issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. DTLS servers allow remote attackers to reuse the same epoch nuEPSS 0.7%CVE-2026-28446CRITICALOpenClaw < 2026.2.1 - Inbound Allowlist Policy Bypass in voice-call Extension via Empty Caller ID and Suffix MatchingEPSS 0.7%CVE-2024-4332CRITICALImproper Authentication in Tripwire Enterprise 9.1.0 APIsEPSS 0.6%CVE-2024-10127CRITICALSupport for authentication bypass condition in M-Files LDAP authenticationEPSS 0.6%CVE-2024-5658MEDIUMCraftCMS Plugin - Two-Factor Authentication - TOTP Token Stays Valid After UseEPSS 0.6%CVE-2022-43635MEDIUMThis vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of TP-Link TL-WR940N 6_2111EPSS 0.6%CVE-2024-32879MEDIUMsocial-auth-app-django Improper Handling of Case Sensitivity vulnerabilityEPSS 0.6%CVE-2023-25957CRITICALA vulnerability has been identified in Mendix SAML (Mendix 7 compatible) (All versions >= V1.16.4 < V1.17.3), Mendix SAML (Mendix 8 compatibEPSS 0.6%