CWE-306— Missing Authentication for Critical Function
The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.— MITRE CWE catalog
2,405 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-306page 20 of 49
- CVE-2022-43110CRITICALCVSS 9.8EG 9.82025-08-22
Voltronic Power ViewPower through 1.04-21353 and PowerShield Netguard before 1.04-23292 allows a remote attacker to configure the system via an unspecified web interface. An unauthenticated remote attacker can make changes to the system in…
- CVE-2022-43554HIGHCVSS 7.8EG 7.82023-11-03
Ivanti Avalanche Smart Device Service Missing Authentication Local Privilege Escalation Vulnerability
- CVE-2022-43555HIGHCVSS 7.8EG 7.82023-11-03
Ivanti Avalanche Printer Device Service Missing Authentication Local Privilege Escalation Vulnerability
- CVE-2022-43761CRITICALCVSS 9.4EG 7.52023-02-08
Missing authentication when creating and managing the B&R APROL database in versions < R 4.2-07 allows reading and changing the system configuration.
- CVE-2022-43976CRITICALCVSS 9.8EG 9.82023-01-17
An issue was discovered in FC46-WebBridge on GE Grid Solutions MS3000 devices before 3.7.6.25p0_3.2.2.17p0_4.7p0. Direct access to the API is possible on TCP port 8888 via programs located in the cgi-bin folder without any authentication.
- CVE-2022-43989HIGHCVSS 7.3EG 7.32022-11-01
Password recovery vulnerability in SICK SIM2x00 (ARM) Partnumber 1092673 and 1081902 with firmware version < 1.2.0 allows an unprivileged remote attacker to gain access to the userlevel defined as RecoverableUserLevel by invocating the pas…
- CVE-2022-43990HIGHCVSS 7.3EG 7.32022-11-01
Password recovery vulnerability in SICK SIM1012 Partnumber 1098146 with firmware version <2.2.0 allows an unprivileged remote attacker to gain access to the userlevel defined as RecoverableUserLevel by invocating the password recovery mech…
- CVE-2022-43999CRITICALCVSS 9.8EG 9.82022-11-16
An issue was discovered in BACKCLICK Professional 5.9.63. Due to exposed CORBA management services, arbitrary system commands can be executed on the server.
- CVE-2022-44000CRITICALCVSS 9.8EG 9.82022-11-16
An issue was discovered in BACKCLICK Professional 5.9.63. Due to an exposed internal communications interface, it is possible to execute arbitrary system commands on the server.
- CVE-2022-44001CRITICALCVSS 9.8EG 9.82022-11-17
An issue was discovered in BACKCLICK Professional 5.9.63. User authentication for accessing the CORBA back-end services can be bypassed.
- CVE-2022-44013CRITICALCVSS 9.1EG 9.12022-12-25
An issue was discovered in Simmeth Lieferantenmanager before 5.6. An attacker can make various API calls without authentication because the password in a Credential Object is not checked.
- CVE-2022-44216HIGHCVSS 7.5EG 7.52023-02-20
Gnuboard 5.5.4 and 5.5.5 is vulnerable to Insecure Permissions. An attacker can change password of all users without knowing victim's original password.
- CVE-2022-44784HIGHCVSS 8.8EG 8.82022-11-21
An issue was discovered in Appalti & Contratti 9.12.2. The target web applications LFS and DL229 expose a set of services provided by the Axis 1.4 instance, embedded directly into the applications, as hinted by the WEB-INF/web.xml file lea…
- CVE-2022-45138CRITICALCVSS 9.8EG 9.82023-02-27
The configuration backend of the web-based management can be used by unauthenticated users, although only authenticated users should be able to use the API. The vulnerability allows an unauthenticated attacker to read and set several devic…
- CVE-2022-45140CRITICALCVSS 9.8EG 9.82023-02-27
The configuration backend allows an unauthenticated user to write arbitrary data with root privileges to the storage, which could lead to unauthenticated remote code execution and full system compromise.
- CVE-2022-45190MEDIUMCVSS 5.3EG 5.32023-02-08
An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio range can bypass passkey entry in the legacy pairing of the device.
- CVE-2022-45378CRITICALCVSS 9.8EG 9.82022-11-14
In the default configuration of Apache SOAP, an RPCRouterServlet is available without authentication. This gives an attacker the possibility to invoke methods on the classpath that meet certain criteria. Depending on what classes are avail…
- CVE-2022-45423HIGHCVSS 7.5EG 7.52022-12-27
Some Dahua software products have a vulnerability of unauthenticated request of MQTT credentials. An attacker can obtain encrypted MQTT credentials by sending a specific crafted packet to the vulnerable interface (the credentials cannot be…
- CVE-2022-45424MEDIUMCVSS 5.3EG 5.32022-12-27
Some Dahua software products have a vulnerability of unauthenticated request of AES crypto key. An attacker can obtain the AES crypto key by sending a specific crafted packet to the vulnerable interface.
- CVE-2022-45432MEDIUMCVSS 5.3EG 5.32022-12-27
Some Dahua software products have a vulnerability of unauthenticated search for devices. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could unauthenticate…
- CVE-2022-45433LOWCVSS 3.7EG 3.72022-12-27
Some Dahua software products have a vulnerability of unauthenticated traceroute host from remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker …
- CVE-2022-45477CRITICALCVSS 9.8EG 9.82022-12-05
Telepad allows remote unauthenticated users to send instructions to the server to execute arbitrary code without any previous authorization or authentication. CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- CVE-2022-45479CRITICALCVSS 9.8EG 9.82022-12-05
PC Keyboard allows remote unauthenticated users to send instructions to the server to execute arbitrary code without any previous authorization or authentication. CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- CVE-2022-45481CRITICALCVSS 9.8EG 9.82022-12-05
The default configuration of Lazy Mouse does not require a password, allowing remote unauthenticated users to execute arbitrary code with no prior authorization or authentication. CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- CVE-2022-45498HIGHCVSS 7.5EG 7.52022-12-08
An issue in the component tpi_systool_handle(0) (/goform/SysToolReboot) of Tenda W6-S v1.0.0.4(510) allows unauthenticated attackers to arbitrarily reboot the device.
- CVE-2022-45504HIGHCVSS 7.5EG 7.52022-12-08
An issue in the component tpi_systool_handle(0) (/goform/SysToolRestoreSet) of Tenda W6-S v1.0.0.4(510) allows unauthenticated attackers to arbitrarily reboot the device.
- CVE-2022-45551CRITICALCVSS 9.8EG 9.82023-03-03
An issue discovered in Shenzhen Zhiboton Electronics ZBT WE1626 Router v 21.06.18 allows attackers to escalate privileges via WGET command to the Network Diagnosis endpoint.
- CVE-2022-45794HIGHCVSS 8.6EG 8.62024-01-10
An attacker with network access to the affected PLC (CJ-series and CS-series PLCs, all versions) may use a network protocol to read and write files on the PLC internal memory and memory card.
- CVE-2022-45933CRITICALCVSS 9.8EG 9.82022-11-27
KubeView through 0.1.31 allows attackers to obtain control of a Kubernetes cluster because api/scrape/kube-system does not require authentication, and retrieves certificate files that can be used for authentication as kube-admin. NOTE: the…
- CVE-2022-46145HIGHCVSS 8.1EG 8.12022-12-02
authentik is an open-source identity provider. Versions prior to 2022.11.2 and 2022.10.2 are vulnerable to unauthorized user creation and potential account takeover. With the default flows, unauthenticated users can create new accounts in …
- CVE-2022-46414CRITICALCVSS 9.8EG 9.82022-12-04
An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100. Unauthenticated remote command execution can occur via the management portal.
- CVE-2022-46463HIGHCVSS 7.5EG 7.52023-01-13
An access control issue in Harbor v1.X.X to v2.5.3 allows attackers to access public and private image repositories without authentication. NOTE: the vendor's position is that this "is clearly described in the documentation as a feature."
- CVE-2022-46732CRITICALCVSS 9.8EG 9.82023-01-18
Even if the authentication fails for local service authentication, the requested command could still execute regardless of authentication status.
- CVE-2022-47377CRITICALCVSS 9.8EG 9.82022-12-16
Password recovery vulnerability in SICK SIM2000ST Partnumber 2086502 with firmware version <1.13.4 allows an unprivileged remote attacker to gain access to the userlevel defined as RecoverableUserLevel by invocating the password recovery m…
- CVE-2022-47703HIGHCVSS 7.5EG 7.52023-02-16
TIANJIE CPE906-3 is vulnerable to password disclosure. This is present on Software Version WEB5.0_LCD_20200513, Firmware Version MV8.003, and Hardware Version CPF906-V5.0_LCD_20200513.
- CVE-2022-48288HIGHCVSS 7.5EG 7.52023-02-09
The bundle management module lacks authentication and control mechanisms in some APIs. Successful exploitation of this vulnerability may affect data confidentiality.
- CVE-2022-48289HIGHCVSS 7.5EG 7.52023-02-09
The bundle management module lacks authentication and control mechanisms in some APIs. Successful exploitation of this vulnerability may affect data confidentiality.
- CVE-2022-48291MEDIUMCVSS 6.5EG 6.52023-03-27
The Bluetooth module has an authentication bypass vulnerability in the pairing process. Successful exploitation of this vulnerability may affect confidentiality.
- CVE-2022-48299HIGHCVSS 7.5EG 7.52023-02-09
The WMS module lacks the authentication mechanism in some APIs. Successful exploitation of this vulnerability may affect data confidentiality.
- CVE-2022-48300HIGHCVSS 7.5EG 7.52023-02-09
The WMS module lacks the authentication mechanism in some APIs. Successful exploitation of this vulnerability may affect data confidentiality.
- CVE-2022-48494HIGHCVSS 7.5EG 7.52023-06-19
Vulnerability of lax app identity verification in the pre-authorization function.Successful exploitation of this vulnerability will cause malicious apps to become pre-authorized.
- CVE-2022-48496HIGHCVSS 7.5EG 7.52023-06-19
Vulnerability of lax app identity verification in the pre-authorization function.Successful exploitation of this vulnerability will cause malicious apps to become pre-authorized.
- CVE-2022-48621HIGHCVSS 7.5EG 7.52024-02-18
Vulnerability of missing authentication for critical functions in the Wi-Fi module.Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2022-4978CRITICALCVSS 9.3EG 9.32025-07-23
Remote Control Server, maintained by Steppschuh, 3.1.1.12 allows unauthenticated remote code execution when authentication is disabled, which is the default configuration. The server exposes a custom UDP-based control protocol that accept…
- CVE-2022-4980CRITICALCVSS 9.3EG 9.32025-09-19
General Bytes Crypto Application Server (CAS) beginning with version 20201208 prior to 20220531.38 (backport) and 20220725.22 (mainline) contains an authentication bypass in the admin web interface. An unauthenticated attacker could invoke…
- CVE-2022-50591CRITICALCVSS 9.8EG 9.82025-11-06
Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘ztp_confi…
- CVE-2022-50592HIGHCVSS 7.2EG 7.22025-11-06
Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘getInvent…
- CVE-2022-50593CRITICALCVSS 9.8EG 9.82025-11-06
Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘search_te…
- CVE-2022-50594HIGHCVSS 7.5EG 7.52025-11-06
Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘data’ p…
- CVE-2022-50595HIGHCVSS 7.2EG 7.22025-11-06
Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘ztp_searc…
Map vulnerabilities like CWE-306 to your infrastructure
EchelonGraph correlates every CVE — across CWE-306 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →