CWE-306— Missing Authentication for Critical Function
The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.— MITRE CWE catalog
2,405 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-306page 14 of 49
- CVE-2021-23843HIGHCVSS 8.8EG 8.82022-01-19
The Bosch software tools AccessIPConfig.exe and AmcIpConfig.exe are used to configure certains settings in AMC2 devices. The tool allows putting a password protection on configured devices to restrict access to the configuration of an AMC2…
- CVE-2021-23847CRITICALCVSS 9.8EG 9.82021-06-09
A Missing Authentication in Critical Function in Bosch IP cameras allows an unauthenticated remote attacker to extract sensitive information or change settings of the camera by sending crafted requests to the device. Only devices of the CP…
- CVE-2021-23858HIGHCVSS 8.6EG 7.52021-10-04
Information disclosure: The main configuration, including users and their hashed passwords, is exposed by an unprotected web server resource and can be accessed without authentication. Additionally, device details are exposed which include…
- CVE-2021-24219MEDIUMCVSS 5.3EG 5.32021-04-12
The Thrive Optimize WordPress plugin before 1.4.13.3, Thrive Comments WordPress plugin before 1.4.15.3, Thrive Headline Optimizer WordPress plugin before 1.3.7.3, Thrive Leads WordPress plugin before 2.3.9.4, Thrive Ultimatum WordPress plu…
- CVE-2021-25094HIGHCVSS 8.1EG 9.02022-04-25
The Tatsu WordPress plugin before 3.3.12 add_custom_font action can be used without prior authentication to upload a rogue zip file which is uncompressed under the WordPress's upload directory. By adding a PHP shell with a filename startin…
- CVE-2021-25312HIGHCVSS 8.8EG 8.82021-01-27
HTCondor before 8.9.11 allows a user to submit a job as another user on the system, because of a flaw in the IDTOKENS authentication method.
- CVE-2021-26264MEDIUMCVSS 6.1EG 5.52022-01-28
A specially crafted script could cause the DeltaV Distributed Control System Controllers (All Versions) to restart and cause a denial-of-service condition.
- CVE-2021-26278MEDIUMCVSS 6.3EG 6.32024-12-17
The wifi module exposes the interface and has improper permission control, leaking sensitive information about the device.
- CVE-2021-26280HIGHCVSS 7.9EG 7.92024-12-17
Locally installed application can bypass the permission check and perform system operations that require permission.
- CVE-2021-26637HIGHCVSS 8.8EG 9.82022-06-23
There is no account authentication and permission check logic in the firmware and existing apps of SiHAS's SGW-300, ACM-300, GCM-300, so unauthorized users can remotely control the device.
- CVE-2021-26697MEDIUMCVSS 5.3EG 5.32021-02-17
The lineage endpoint of the deprecated Experimental API was not protected by authentication in Airflow 2.0.0. This allowed unauthenticated users to hit that endpoint. This is low-severity issue as the attacker needs to be aware of certain …
- CVE-2021-26705CRITICALCVSS 9.1EG 9.12021-03-05
An issue was discovered in SquareBox CatDV Server through 9.2. An attacker can invoke sensitive RMI methods such as getConnections without authentication, the results of which can be used to generate valid authentication tokens. These toke…
- CVE-2021-26928MEDIUMCVSS 6.8EG 6.82021-06-04
BIRD through 2.0.7 does not provide functionality for password authentication of BGP peers. Because of this, products that use BIRD (which may, for example, include Tigera products in some configurations, as well as products of other vendo…
- CVE-2021-27215CRITICALCVSS 9.8EG 9.82021-03-03
An issue was discovered in genua genugate before 9.0 Z p19, 9.1.x through 9.6.x before 9.6 p7, and 10.x before 10.1 p4. The Web Interfaces (Admin, Userweb, Sidechannel) can use different methods to perform the authentication of a user. A s…
- CVE-2021-27255HIGHCVSS 8.8EG 8.82021-03-05
This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR R7800 firmware version 1.0.2.76. Authentication is not required to exploit this vulnerability. The specific flaw exists within the re…
- CVE-2021-27395HIGHCVSS 8.1EG 8.12021-10-12
A vulnerability has been identified in SIMATIC Process Historian 2013 and earlier (All versions), SIMATIC Process Historian 2014 (All versions < SP3 Update 6), SIMATIC Process Historian 2019 (All versions), SIMATIC Process Historian 2020 (…
- CVE-2021-27569MEDIUMCVSS 5.3EG 5.32021-05-07
An issue was discovered in Emote Remote Mouse through 4.0.0.0. Attackers can maximize or minimize the window of a running process by sending the process name in a crafted packet. This information is sent in cleartext and is not protected b…
- CVE-2021-27570MEDIUMCVSS 5.3EG 5.32021-05-07
An issue was discovered in Emote Remote Mouse through 3.015. Attackers can close any running process by sending the process name in a specially crafted packet. This information is sent in cleartext and is not protected by any authenticatio…
- CVE-2021-27571MEDIUMCVSS 5.3EG 5.32021-05-07
An issue was discovered in Emote Remote Mouse through 4.0.0.0. Attackers can retrieve recently used and running applications, their icons, and their file paths. This information is sent in cleartext and is not protected by any authenticati…
- CVE-2021-27668MEDIUMCVSS 5.3EG 5.32021-08-31
HashiCorp Vault Enterprise 0.9.2 through 1.6.2 allowed the read of license metadata from DR secondaries without authentication. Fixed in 1.6.3.
- CVE-2021-27963HIGHCVSS 8.2EG 8.22021-03-05
SonLogger before 6.4.1 is affected by user creation with any user permissions profile (e.g., SuperAdmin). An anonymous user can send a POST request to /User/saveUser without any authentication or session header.
- CVE-2021-28122CRITICALCVSS 9.8EG 9.82021-03-10
A request-validation issue was discovered in Open5GS 2.1.3 through 2.2.x before 2.2.1. The WebUI component allows an unauthenticated user to use a crafted HTTP API request to create, read, update, or delete entries in the subscriber databa…
- CVE-2021-28124MEDIUMCVSS 5.9EG 5.92021-04-02
A man-in-the-middle vulnerability in Cohesity DataPlatform support channel in version 6.3 up to 6.3.1g, 6.4 up to 6.4.1c and 6.5.1 through 6.5.1b. Missing server authentication in impacted versions can allow an attacker to Man-in-the-middl…
- CVE-2021-28148HIGHCVSS 7.5EG 7.52021-03-22
One of the usage insights HTTP API endpoints in Grafana Enterprise 6.x before 6.7.6, 7.x before 7.3.10, and 7.4.x before 7.4.5 is accessible without any authentication. This allows any unauthenticated user to send an unlimited number of re…
- CVE-2021-28506CRITICALCVSS 9.1EG 9.12022-01-14
An issue has recently been discovered in Arista EOS where certain gNOI APIs incorrectly skip authorization and authentication which could potentially allow a factory reset of the device.
- CVE-2021-28809CRITICALCVSS 9.8EG 9.82021-07-08
An improper access control vulnerability has been reported to affect certain legacy versions of HBS 3. If exploited, this vulnerability allows attackers to compromise the security of the operating system.QNAP have already fixed this vulner…
- CVE-2021-28913CRITICALCVSS 9.8EG 9.82021-09-09
BAB TECHNOLOGIE GmbH eibPort V3 prior version 3.9.1 allow unauthenticated attackers access to /webif/SecurityModule to validate the so called and hard coded unique 'eibPort String' which acts as the root SSH key passphrase. This is usable …
- CVE-2021-29203CRITICALCVSS 9.8EG 9.82021-05-06
A security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software, prior to version 1.22. The vulnerability could be remotely exploited to bypass remote a…
- CVE-2021-29442HIGHCVSS 8.6EG 9.02021-04-27
Nacos is a platform designed for dynamic service discovery and configuration and service management. In Nacos before version 1.4.1, the ConfigOpsController lets the user perform management operations like querying the database or even wipi…
- CVE-2021-30028HIGHCVSS 7.2EG 7.22022-05-20
SOOTEWAY Wi-Fi Range Extender v1.5 was discovered to use default credentials (the admin password for the admin account) to access the TELNET service, allowing attackers to erase/read/write the firmware remotely.
- CVE-2021-30167CRITICALCVSS 9.8EG 9.82021-04-28
The manage users profile services of the network camera device allows an authenticated. Remote attackers can modify URL parameters and further amend user’s information and escalate privileges to control the devices.
- CVE-2021-30190CRITICALCVSS 9.8EG 9.82021-05-25
CODESYS V2 Web-Server before 1.1.9.20 has Improper Access Control.
- CVE-2021-30462HIGHCVSS 7.2EG 7.22021-04-08
VestaCP through 0.9.8-24 allows the admin user to escalate privileges to root because the Sudo configuration does not require a password to run /usr/local/vesta/bin scripts.
- CVE-2021-31337CRITICALCVSS 9.8EG 9.82021-06-28
The Telnet service of the SIMATIC HMI Comfort Panels system component in affected products does not require authentication, which may allow a remote attacker to gain access to the device if the service is enabled. Telnet is disabled by def…
- CVE-2021-31793HIGHCVSS 7.5EG 7.52021-05-06
An issue exists on NightOwl WDB-20-V2 WDB-20-V2_20190314 devices that allows an unauthenticated user to gain access to snapshots and video streams from the doorbell. The binary app offers a web server on port 80 that allows an unauthentica…
- CVE-2021-31814MEDIUMCVSS 6.1EG 6.12022-02-10
In Stormshield 1.1.0, and 2.1.0 through 2.9.0, an attacker can block a client from accessing the VPN and can obtain sensitive information through the SN VPN SSL Client.
- CVE-2021-31868MEDIUMCVSS 4.3EG 4.32021-08-19
Rapid7 Nexpose version 6.6.95 and earlier allows authenticated users of the Security Console to view and edit any ticket in the legacy ticketing feature, regardless of the assignment of the ticket. This issue was resolved in version 6.6.96…
- CVE-2021-32453MEDIUMCVSS 6.5EG 3.32021-05-17
SITEL CAP/PRX firmware version 5.2.01 allows an attacker with access to the local network, to access via HTTP to the internal configuration database of the device without any authentication. An attacker could exploit this vulnerability in …
- CVE-2021-32659MEDIUMCVSS 6.5EG 6.52021-06-16
Matrix-appservice-bridge is the bridging service for the Matrix communication program's application services. In versions 2.6.0 and earlier, if a bridge has room upgrade handling turned on in the configuration (the `roomUpgradeOpts` key wh…
- CVE-2021-32700CRITICALCVSS 9.1EG 9.12021-06-22
Ballerina is an open source programming language and platform for cloud application programmers. Ballerina versions 1.2.x and SL releases up to alpha 3 have a potential for a supply chain attack via MiTM against users. Http connections did…
- CVE-2021-32709MEDIUMCVSS 4.9EG 4.92021-06-24
Shopware is an open source eCommerce platform. Creation of order credits was not validated by ACL in admin orders. Users are recommend to update to the current version 6.4.1.1. You can get the update to 6.4.1.1 regularly via the Auto-Updat…
- CVE-2021-32794MEDIUMCVSS 6.8EG 6.82021-07-26
ArchiSteamFarm is a C# application with primary purpose of idling Steam cards from multiple accounts simultaneously. Due to a bug in ASF code `POST /Api/ASF` ASF API endpoint responsible for updating global ASF config incorrectly removed `…
- CVE-2021-32800HIGHCVSS 8.1EG 8.12021-09-07
Nextcloud server is an open source, self hosted personal cloud. In affected versions an attacker is able to bypass Two Factor Authentication in Nextcloud. Thus knowledge of a password, or access to a WebAuthN trusted device of a user was s…
- CVE-2021-32930CRITICALCVSS 9.8EG 9.82021-06-11
The affected product’s configuration is vulnerable due to missing authentication, which may allow an attacker to change configurations and execute arbitrary code on the iView (versions prior to v5.7.03.6182).
- CVE-2021-33008HIGHCVSS 8.8EG 9.82022-04-04
AVEVA System Platform versions 2017 through 2020 R2 P01 does not perform any authentication for functionality that requires a provable user identity.
- CVE-2021-33221CRITICALCVSS 9.8EG 9.82021-07-07
An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. There are Unauthenticated API Endpoints.
- CVE-2021-33259MEDIUMCVSS 5.3EG 5.32021-10-31
Several web interfaces in D-Link DIR-868LW 1.12b have no authentication requirements for access, allowing for attackers to obtain users' DNS query history.
- CVE-2021-33346CRITICALCVSS 9.8EG 9.82021-06-24
There is an arbitrary password modification vulnerability in a D-LINK DSL-2888A router product. An attacker can use this vulnerability to modify the password of the admin user without authorization.
- CVE-2021-33543CRITICALCVSS 9.8EG 9.02021-09-13
Multiple camera devices by UDP Technology, Geutebrück and other vendors allow unauthenticated remote access to sensitive files due to default user authentication settings. This can lead to manipulation of the device and denial of service.
- CVE-2021-33658HIGHCVSS 7.8EG 7.82022-03-11
atune before 0.3-0.8 log in as a local user and run the curl command to access the local atune url interface to escalate the local privilege or modify any file. Authentication is not forcibly enabled in the default configuration.
Map vulnerabilities like CWE-306 to your infrastructure
EchelonGraph correlates every CVE — across CWE-306 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →