映射到 CWE-306 的搜索结果 (17)

CVE-2018-5338(发布:2018-04-18 04:29:00)NM
CVSS7.5

[原文]An issue was discovered in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: missing authentication/authorization for a database query mechanism.

CVE-2018-0554(发布:2018-04-09 09:29:00)NM
CVSS8.3

[原文]Buffalo WZR-1750DHP2 Ver.2.30 and earlier allows an attacker to bypass authentication and execute arbitrary commands on the device via unspecified vectors.

CVE-2018-9119(发布:2018-04-04 14:29:02)NM
CVSS3.6

[原文]An attacker with physical access to a BrilliantTS FUZE card (MCU firmware 0.1.73, BLE firmware 0.7.4) can unlock the card, extract credit card numbers, and tamper with data on the card via Bluetooth because no authentication is needed, as demonstrated by gatttool.

CVE-2018-9162(发布:2018-03-31 18:29:00)NM
CVSS7.5

[原文]Contec Smart Home 4.15 devices do not require authentication for new_user.php, edit_user.php, delete_user.php, and user.php, as demonstrated by changing the admin password and then obtaining control over doors.

CVE-2018-0521(发布:2018-03-09 11:29:00)NM
CVSS8.3

[原文]Buffalo WXR-1900DHP2 firmware Ver.2.48 and earlier allows an attacker to bypass authentication and execute arbitrary commands on the device via unspecified vectors.

CVE-2014-7271(发布:2018-03-08 15:29:00)NMCS
CVSS4.6

[CNNVD]SDDM 本地身份验证绕过漏洞--SDDM是一款基于QML的X11显示管理器。 SDDM中存在本地身份验证绕过漏洞。本地攻击者可利用该漏洞绕过安全限制,执行未授权操作。

123下一页尾页 第1页 / 共3页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站