CWE-306— Missing Authentication for Critical Function
The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.— MITRE CWE catalog
2,406 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-306page 36 of 49
- CVE-2025-41686HIGHCVSS 7.8EG 7.82025-08-12
A low-privileged local attacker can exploit improper permissions on nssm.exe to escalate their privileges and gain administrative access.
- CVE-2025-41689HIGHCVSS 7.5EG 5.32025-08-19
An unauthenticated remote attacker can get access without password protection to the affected device. This enables the unprotected read-only access to the stored measurement data.
- CVE-2025-41703HIGHCVSS 7.5EG 7.52025-10-14
An unauthenticated remote attacker can cause a Denial of Service by turning off the output of the UPS via Modbus command.
- CVE-2025-41715CRITICALCVSS 9.8EG 9.82025-09-24
The database for the web application is exposed without authentication, allowing an unauthenticated remote attacker to gain unauthorized access and potentially compromise it.
- CVE-2025-41716MEDIUMCVSS 5.3EG 5.32025-09-24
The web application allows an unauthenticated remote attacker to learn information about existing user accounts with their corresponding role due to missing authentication for critical function.
- CVE-2025-4268MEDIUMCVSS 5.3EG 5.32025-05-05
A vulnerability has been found in TOTOLINK A720R 4.1.5cu.374 and classified as critical. This vulnerability affects unknown code of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument topicurl with the input RebootSystem leads …
- CVE-2025-42875MEDIUMCVSS 6.6EG 6.62025-12-09
The SAP Internet Communication Framework does not conduct any authentication checks for features that need user identification allowing an attacker to reuse authorization tokens, violating secure authentication practices causing low impact…
- CVE-2025-42885MEDIUMCVSS 5.8EG 5.82025-11-11
Due to missing authentication, SAP HANA 2.0 (hdbrss) allows an unauthenticated attacker to call a remote-enabled function that will enable them to view information. As a result, it has a low impact on the confidentiality but no impact on t…
- CVE-2025-42926MEDIUMCVSS 5.3EG 5.32025-09-09
SAP NetWeaver Application Server Java does not perform an authentication check when an attacker attempts to access internal files within the web application.Upon successfully exploitation, an unauthenticated attacker could access these fil…
- CVE-2025-43428CRITICALCVSS 9.8EG 9.82025-12-17
A configuration issue was addressed with additional restrictions. This issue is fixed in iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2. Photos in the Hidden Photos Album may be viewed without authentication.
- CVE-2025-4382MEDIUMCVSS 5.9EG 5.92025-05-09
A flaw was found in systems utilizing LUKS-encrypted disks with GRUB configured for TPM-based auto-decryption. When GRUB is set to automatically decrypt disks using keys stored in the TPM, it reads the decryption key into system memory. If…
- CVE-2025-43983CRITICALCVSS 9.1EG 9.12025-08-14
KuWFi CPF908-CP5 WEB5.0_LCD_20210125 devices have multiple unauthenticated access control vulnerabilities within goform/goform_set_cmd_process and goform/goform_get_cmd_process. These allow an unauthenticated attacker to retrieve sensitive…
- CVE-2025-43994HIGHCVSS 8.6EG 8.62025-10-24
Dell Storage Center - Dell Storage Manager, version(s) DSM 20.1.21, contain(s) a Missing Authentication for Critical Function vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leadi…
- CVE-2025-44004HIGHCVSS 7.2EG 7.22025-08-11
Mattermost Confluence Plugin version <1.5.0 fails to check the authorization of the user to the Mattermost instance which allows attackers to create a channel subscription without proper authorization via API call to the create channel sub…
- CVE-2025-44039MEDIUMCVSS 5.1EG 5.12025-05-13
CP-XR-DE21-S -4G Router Firmware version 1.031.022 was discovered to contain insecure protections for its UART console. This vulnerability allows local attackers to connect to the UART port via a serial connection, read all boot sequence, …
- CVE-2025-4555CRITICALCVSS 9.8EG 9.82025-05-12
The web management interface of Okcat Parking Management Platform from ZONG YU has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to directly access system functions. These functions include opening gates…
- CVE-2025-4557CRITICALCVSS 9.1EG 9.12025-05-12
The specific APIs of Parking Management System from ZONG YU has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access specific APIs and operate system functions. These functions include opening gates a…
- CVE-2025-4560MEDIUMCVSS 6.5EG 6.52025-05-12
The ISOinsight from Netvision has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access certain system functions. These functions include viewing the administrator list, viewing and editing IP settings…
- CVE-2025-45814CRITICALCVSS 9.8EG 9.82025-07-02
Missing authentication checks in the query.fcgi endpoint of NS3000 v8.1.1.125110 , v7.2.8.124852 , and v7.x and NS2000 v7.02.08 allows attackers to execute a session hijacking attack.
- CVE-2025-46275CRITICALCVSS 9.8EG 9.82025-04-24
WGS-80HPT-V2 and WGS-4215-8T2S are missing authentication that could allow an attacker to create an administrator account without knowing any existing credentials.
- CVE-2025-47272MEDIUMCVSS 5.5EG 5.52025-06-02
The CE Phoenix eCommerce platform, starting in version 1.0.9.7 and prior to version 1.1.0.3, allowed logged-in users to delete their accounts without requiring password re-authentication. An attacker with temporary access to an authenticat…
- CVE-2025-47357HIGHCVSS 8.0EG 8.02025-11-04
Information Disclosure when a user-level driver performs QFPROM read or write operations on Fuse regions.
- CVE-2025-47850MEDIUMCVSS 4.3EG 4.32025-05-20
In JetBrains YouTrack before 2025.1.74704 restricted attachments could become visible after issue cloning
- CVE-2025-47870MEDIUMCVSS 4.3EG 4.32025-08-21
Mattermost versions 10.8.x <= 10.8.3, 10.5.x <= 10.5.8, 9.11.x <= 9.11.17, 10.9.x <= 10.9.2 fail to sanitize the team invite ID in the POST /api/v4/teams/:teamId/restore endpoint which allows an team admin with no member invite privileges…
- CVE-2025-48391HIGHCVSS 7.7EG 7.72025-05-20
In JetBrains YouTrack before 2025.1.76253 deletion of issues was possible due to missing permission checks in API
- CVE-2025-48397HIGHCVSS 7.1EG 7.12025-11-03
The privileged user could log in without sufficient credentials after enabling an application protocol. This security issue has been fixed in the latest script patch latest version of of Eaton BLSS (7.3.0.SCP004).
- CVE-2025-48469CRITICALCVSS 9.6EG 9.62025-06-24
Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload firmware through a public update page, potentially leading to backdoor installation or privilege escalation.
- CVE-2025-48572HIGHCVSS 7.8EG 9.0⚠ KEV2025-12-08
In multiple locations, there is a possible way to launch activities from the background due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not n…
- CVE-2025-48608MEDIUMCVSS 5.5EG 5.52025-12-08
In isValidMediaUri of SettingsProvider.java, there is a possible cross user media read due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is n…
- CVE-2025-48733HIGHCVSS 7.5EG 7.52025-07-22
DuraComm SPM-500 DP-10iN-100-MU lacks access controls for a function that should require user authentication. This could allow an attacker to repeatedly reboot the device.
- CVE-2025-48742MEDIUMCVSS 5.4EG 5.42025-05-27
The installer in SIGB PMB before and fixed in v.8.0.1.2 allows remote code execution.
- CVE-2025-48814HIGHCVSS 7.5EG 7.52025-07-08
Missing authentication for critical function in Windows Remote Desktop Licensing Service allows an unauthorized attacker to bypass a security feature over a network.
- CVE-2025-49596CRITICALCVSS 9.4EG 9.42025-06-13
The MCP inspector is a developer tool for testing and debugging MCP servers. Versions of MCP Inspector below 0.14.1 are vulnerable to remote code execution due to lack of authentication between the Inspector client and proxy, allowing unau…
- CVE-2025-49652CRITICALCVSS 9.8EG 9.82025-06-09
Missing Authentication in the registration feature of Lablup's BackendAI allows arbitrary users to create user accounts that can access private data even when registration is disabled.
- CVE-2025-5095CRITICALCVSS 9.8EG 9.82025-08-08
Burk Technology ARC Solo's password change mechanism can be utilized without proper authentication procedures, allowing an attacker to take over the device. A password change request can be sent directly to the device's HTTP endpoint wi…
- CVE-2025-51543CRITICALCVSS 9.8EG 5.32025-08-19
An issue was discovered in Cicool builder 3.4.4 allowing attackers to reset the administrator's password via the /administrator/auth/reset_password endpoint.
- CVE-2025-5192HIGHCVSS 7.5EG 7.52025-06-06
A missing authentication for critical function vulnerability in the client application of Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to bypass authentication and access application…
- CVE-2025-52024CRITICALCVSS 9.4EG 9.42026-01-23
A vulnerability exists in the Aptsys POS Platform Web Services module thru 2025-05-28, which exposes internal API testing tools to unauthenticated users. By accessing specific URLs, an attacker is presented with a directory-style index lis…
- CVE-2025-52089HIGHCVSS 8.8EG 5.42025-07-11
A hidden remote support feature protected by a static secret in TOTOLINK N300RB firmware version 8.54 allows an authenticated attacker to execute arbitrary OS commands with root privileges.
- CVE-2025-52551CRITICALCVSS 9.3EG 9.32025-09-02
E2 Facility Management Systems use a proprietary protocol that allows for unauthenticated file operations on any file in the file system.
- CVE-2025-52665CRITICALCVSS 10.0EG 10.02025-10-31
A malicious actor with access to the management network could exploit a misconfiguration in UniFi’s door access application, UniFi Access, that exposed a management API without proper authentication. This vulnerability was introduced in …
- CVE-2025-52692HIGHCVSS 8.8EG 8.82025-12-19
Successful exploitation of the vulnerability could allow an attacker with local network access to send a specially crafted URL to access certain administration functions without login credentials.
- CVE-2025-53034MEDIUMCVSS 5.4EG 5.42025-10-21
Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications (component: Platform). Supported versions that are affected are 8.0.7.9, 8.0.8.7 and 8.1.2.5. Easily …
- CVE-2025-53037CRITICALCVSS 9.8EG 9.82025-10-21
Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications (component: Platform). Supported versions that are affected are 8.0.7.9, 8.0.8.7 and 8.1.2.5. Easily …
- CVE-2025-53072CRITICALCVSS 9.8EG 9.82025-10-21
Vulnerability in the Oracle Marketing product of Oracle E-Business Suite (component: Marketing Administration). Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with…
- CVE-2025-5310CRITICALCVSS 9.8EG 9.82025-06-27
Dover Fueling Solutions ProGauge MagLink LX Consoles expose an undocumented and unauthenticated target communication framework (TCF) interface on a specific port. Files can be created, deleted, or modified, potentially leading to remote c…
- CVE-2025-53118CRITICALCVSS 9.8EG 9.82025-08-25
An authentication bypass vulnerability exists which allows an unauthenticated attacker to control administrator backup functions, leading to compromise of passwords, secrets, and application session tokens stored by the Unified PAM.
- CVE-2025-53378HIGHCVSS 7.6EG 7.62025-07-10
A missing authentication vulnerability in Trend Micro Worry-Free Business Security Services (WFBSS) agent could have allowed an unauthenticated attacker to remotely take control of the agent on affected installations. Also note: this vu…
- CVE-2025-53789HIGHCVSS 7.8EG 7.82025-08-12
Missing authentication for critical function in Windows StateRepository API allows an authorized attacker to elevate privileges locally.
- CVE-2025-53847MEDIUMCVSS 6.5EG 6.52026-04-14
A missing authentication for critical function vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11, FortiOS 7.0.0 through 7.0.17, FortiOS 6.4 all versions, FortiOS 6.2.9 through …
Map vulnerabilities like CWE-306 to your infrastructure
EchelonGraph correlates every CVE — across CWE-306 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →