Falhas do tipo CWE-306
1.718 resultadosCVE-2026-55196CRITICALHermes WebUI < 0.51.409 - Unauthenticated Passkey Registration via Authentication BypassEPSS 0.6%CVE-2021-32700CRITICALSupply chain attack via MiTM against usersEPSS 0.6%CVE-2024-8456CRITICALPLANET Technology switch devices - Missing Authentication for multiple HTTP routesEPSS 0.6%CVE-2023-24526MEDIUMImproper Access Control in SAP NetWeaver AS Java (Classload Service)EPSS 0.6%CVE-2026-54130CRITICALM365 Copilot Information Disclosure VulnerabilityEPSS 0.6%CVE-2026-35278CRITICALVulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft (component: Performance Monitor). Supported versionsEPSS 0.6%CVE-2023-44152MEDIUMSensitive information disclosure and manipulation due to improper authentication. The following products are affected: Acronis Cyber ProtectEPSS 0.6%CVE-2026-2417CRITICALMissing Authentication for Critical Function in Pharos Controls Mosaic Show ControllerEPSS 0.6%CVE-2024-12511HIGHSMB/FTP Address Book Scan Pass-back attackEPSS 0.6%CVE-2022-45423HIGHSome Dahua software products have a vulnerability of unauthenticated request of MQTT credentials. An attacker can obtain encrypted MQTT credEPSS 0.6%CVE-2023-27357MEDIUMNETGEAR RAX30 GetInfo Missing Authentication Information Disclosure VulnerabilityEPSS 0.6%CVE-2023-41918CRITICALMissing Authentication for Critical Function in Kiloview P1/P2 devicesEPSS 0.6%CVE-2026-2165MEDIUMdetronetdip E-commerce Account Creation Endpoint add_seller.php missing authenticationEPSS 0.6%CVE-2021-4469HIGHDenver SHO-110 IP Camera Unauthenticated Snapshot AccessEPSS 0.6%CVE-2018-25134CRITICALSynaccess netBooter NP-02x/NP-08x 6.8 Authentication Bypass via webNewAcct.cgiEPSS 0.6%CVE-2024-26235HIGHWindows Update Stack Elevation of Privilege VulnerabilityEPSS 0.6%CVE-2025-11852MEDIUMApeman ID71 ONVIF Service device_service missing authenticationEPSS 0.6%CVE-2026-25116HIGHRuntipi vulnerable to unauthenticated docker-compose.yml Overwrite via Path TraversalEPSS 0.6%CVE-2022-41271CRITICALAn unauthenticated user can attach to an open interface exposed through JNDI by the Messaging System of SAP NetWeaver Process Integration (PEPSS 0.6%CVE-2024-50589HIGHUnprotected FHIR APIEPSS 0.6%