映射到 CWE-306 的搜索结果 (17)

CVE-2018-2368(发布:2018-03-01 12:29:00)NMS
CVSS7.5

[原文]SAP NetWeaver System Landscape Directory, LM-CORE 7.10, 7.20, 7.30, 7.31, 7.40, does not perform any authentication checks for functionalities that require user identity.

CVE-2018-7301(发布:2018-02-22 14:29:06)NM
CVSS7.5

[原文]eQ-3 AG HomeMatic CCU2 2.29.22 devices have an open XML-RPC port without authentication. This can be exploited by sending arbitrary XML-RPC requests to control the attached BidCos devices.

CVE-2018-2360(发布:2018-01-09 10:29:00)NMS
CVSS5.0

[原文]SAP Startup Service, SAP KERNEL 7.45, 7.49, and 7.52, is missing an authentication check for functionalities that require user identity and cause consumption of file system storage.

CVE-2017-8155(发布:2017-11-22 14:29:03)NM
CVSS7.2

[原文]The outdoor unit of Customer Premise Equipment (CPE) product B2338-168 V100R001C00 has a no authentication vulnerability on a certain port. After accessing the network between the indoor and outdoor units of the CPE, an attacker can deliver commands to the specific port of the outdoor unit and execute them without authentication. Successful exploit could allow the attacker to take control over the outdoor unit.

CVE-2017-8156(发布:2017-11-22 14:29:03)NM
CVSS7.2

[原文]The outdoor unit of Customer Premise Equipment (CPE) product B2338-168 V100R001C00 has a no authentication vulnerability on the serial port. An attacker can access the serial port on the circuit board of the outdoor unit and log in to the CPE without authentication. Successful exploit could allow the attacker to take control over the outdoor unit.

CVE-2017-1483(发布:2017-09-27 21:29:02)NMS
CVSS7.5

[原文]IBM Security Identity Manager Adapters 6.0 and 7.0 does not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas. IBM X-Force ID: 128621.

首页上一页123下一页尾页 第2页 / 共3页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站