CWE-306— Missing Authentication for Critical Function
The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.— MITRE CWE catalog
2,406 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-306page 37 of 49
- CVE-2025-53938HIGHCVSS 7.5EG 7.52025-07-16
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. An Authentication Bypass vulnerability was identified in the `/dao/verificar_recursos_cargo.php` endpoint of the WeGIA application pri…
- CVE-2025-54158HIGHCVSS 7.8EG 7.82025-12-04
Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors.
- CVE-2025-54478HIGHCVSS 7.2EG 7.22025-08-11
Mattermost Confluence Plugin version <1.5.0 fails to enforce authentication of the user to the Mattermost instance which allows unauthenticated attackers to edit channel subscriptions via API call to the edit channel subscription endpoint.
- CVE-2025-54816CRITICALCVSS 9.4EG 9.42026-01-22
This vulnerability occurs when a WebSocket endpoint does not enforce proper authentication mechanisms, allowing unauthorized users to establish connections. As a result, attackers can exploit this weakness to gain unauthorized access to…
- CVE-2025-54848HIGHCVSS 7.5EG 7.52025-12-01
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted series of network requests can lead to a denial of service. An attacker can send a s…
- CVE-2025-54849HIGHCVSS 7.5EG 7.52025-12-01
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted series of network requests can lead to a denial of service. An attacker can send a s…
- CVE-2025-54850HIGHCVSS 7.5EG 7.52025-12-01
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted series of network requests can lead to a denial of service. An attacker can send a s…
- CVE-2025-54851HIGHCVSS 7.5EG 7.52025-12-01
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted series of network requests can lead to a denial of service. An attacker can send a s…
- CVE-2025-54864HIGHCVSS 7.5EG 7.52025-08-12
Hydra is a continuous integration service for Nix based projects. Prior to commit f7bda02, /api/push-github and /api/push-gitea are called by the corresponding forge without HTTP Basic authentication. Both forges do however feature HMAC si…
- CVE-2025-54942CRITICALCVSS 9.8EG 9.82025-08-30
A missing authentication for critical function vulnerability in SUNNET Corporate Training Management System before 10.11 allows remote attackers to access deployment functionality without prior authentication.
- CVE-2025-55070MEDIUMCVSS 6.5EG 6.52025-11-14
Mattermost versions <11 fail to enforce multi-factor authentication on WebSocket connections which allows unauthenticated users to access sensitive information via WebSocket events
- CVE-2025-55073MEDIUMCVSS 5.4EG 5.42025-11-14
Mattermost versions 10.11.x <= 10.11.3, 10.5.x <= 10.5.11, 10.12.x <= 10.12.0 fail to validate the relationship between the post being updated and the MSTeams plugin OAuth flow which allows an attacker to edit arbitrary posts via a crafted…
- CVE-2025-55108CRITICALCVSS 10.0EG 10.02025-11-05
The Control-M/Agent is vulnerable to unauthenticated remote code execution, arbitrary file read and write and similar unauthorized actions when mutual SSL/TLS authentication is not enabled (i.e. in the default configuration). NOTE: …
- CVE-2025-55221HIGHCVSS 8.6EG 8.62025-12-01
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP USB Function functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted network packet can lead to a denial of service. An attacker can send an…
- CVE-2025-55222HIGHCVSS 8.6EG 8.62025-12-01
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP USB Function functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted network packet can lead to a denial of service. An attacker can send an…
- CVE-2025-55581HIGHCVSS 7.3EG 7.32025-08-22
D-Link DCS-825L firmware version 1.08.01 and possibly prior versions contain an insecure implementation in the mydlink-watch-dog.sh script. The script monitors and respawns the `dcp` and `signalc` binaries without validating their integrit…
- CVE-2025-55583CRITICALCVSS 9.8EG 9.82025-08-28
D-Link DIR-868L B1 router firmware version FW2.05WWB02 contains an unauthenticated OS command injection vulnerability in the fileaccess.cgi component. The endpoint /dws/api/UploadFile accepts a pre_api_arg parameter that is passed directly…
- CVE-2025-56405HIGHCVSS 7.5EG 7.52025-09-10
An issue was discovered in litmusautomation litmus-mcp-server thru 0.0.1 allowing unauthorized attackers to control the target's MCP service through the SSE protocol.
- CVE-2025-56562HIGHCVSS 7.5EG 7.52025-09-16
An incorrect API discovered in Signify Wiz Connected 1.9.1 allows attackers to remotely launch a DoS on Wiz devices only requiring the MAC address.
- CVE-2025-5715MEDIUMCVSS 6.4EG 3.82025-06-06
A vulnerability was found in Signal App 7.41.4 on Android. It has been declared as problematic. This vulnerability affects unknown code of the component Biometric Authentication Handler. The manipulation leads to missing critical step in a…
- CVE-2025-5719MEDIUMCVSS 5.1EG 5.12025-06-06
The wallet has an authentication bypass vulnerability that allows access to specific pages.
- CVE-2025-57432CRITICALCVSS 9.8EG 9.82025-09-22
Blackmagic Web Presenter version 3.3 exposes a Telnet service on port 9977 that accepts unauthenticated commands. This service allows remote attackers to manipulate stream settings, including changing video modes and possibly altering devi…
- CVE-2025-58083CRITICALCVSS 10.0EG 10.02025-11-15
General Industrial Controls Lynx+ Gateway is missing critical authentication in the embedded web server which could allow an attacker to remotely reset the device.
- CVE-2025-58318MEDIUMCVSS 5.9EG 5.92025-09-01
Delta Electronics DIAView has an authentication bypass vulnerability.
- CVE-2025-58434CRITICALCVSS 9.8EG 9.82025-09-12
Flowise is a drag & drop user interface to build a customized large language model flow. In version 3.0.5 and earlier, the `forgot-password` endpoint in Flowise returns sensitive information including a valid password reset `tempToken` wit…
- CVE-2025-58443CRITICALCVSS 9.1EG 9.12025-09-06
FOG is a free open-source cloning/imaging/rescue suite/inventory management system. Versions 1.5.10.1673 and below contain an authentication bypass vulnerability. It is possible for an attacker to perform an unauthenticated DB dump where t…
- CVE-2025-5871MEDIUMCVSS 5.3EG 5.32025-06-09
A vulnerability was found in Papendorf SOL Connect Center 3.3.0.0 and classified as problematic. Affected by this issue is some unknown functionality of the component Web Interface. The manipulation leads to missing authentication. The att…
- CVE-2025-5872MEDIUMCVSS 5.3EG 5.32025-06-09
A vulnerability was found in eGauge EG3000 Energy Monitor 3.6.3. It has been classified as problematic. This affects an unknown part of the component Setting Handler. The manipulation leads to missing authentication. It is possible to init…
- CVE-2025-5876MEDIUMCVSS 5.3EG 5.32025-06-09
A vulnerability classified as problematic was found in Lucky LM-520-SC, LM-520-FSC and LM-520-FSC-SAM up to 20250321. Affected by this vulnerability is an unknown functionality. The manipulation leads to missing authentication. The attack …
- CVE-2025-5906CRITICALCVSS 9.8EG 7.32025-06-10
A vulnerability classified as critical has been found in code-projects Laundry System 1.0. This affects an unknown part of the file /data/. The manipulation leads to missing authentication. It is possible to initiate the attack remotely. T…
- CVE-2025-59090CRITICALCVSS 9.3EG 9.32026-01-26
On the exos 9300 server, a SOAP API is reachable on port 8002. This API does not require any authentication prior to sending requests. Therefore, network access to the exos server allows e.g. the creation of arbitrary access log events as …
- CVE-2025-59097CRITICALCVSS 9.3EG 9.32026-01-26
The exos 9300 application can be used to configure Access Managers (e.g. 92xx, 9230 and 9290). The configuration is done in a graphical user interface on the dormakaba exos server. As soon as the save button is clicked in exos 9300, the wh…
- CVE-2025-59246CRITICALCVSS 9.8EG 9.82025-10-09
Azure Entra ID Elevation of Privilege Vulnerability
- CVE-2025-59345CRITICALCVSS 9.1EG 9.12025-09-17
Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, The /api/v1/jobs and /preheats endpoints in Manager web UI are accessible without authentication. Any user with network access to the Ma…
- CVE-2025-59358HIGHCVSS 7.5EG 7.52025-09-15
The Chaos Controller Manager in Chaos Mesh exposes a GraphQL debugging server without authentication to the entire Kubernetes cluster, which provides an API to kill arbitrary processes in any Kubernetes pod, leading to cluster-wide denial …
- CVE-2025-59367CRITICALCVSS 9.8EG 9.82025-11-13
An authentication bypass vulnerability has been identified in certain DSL series routers, may allow remote attackers to gain unauthorized access into the affected system. Refer to the 'Security Update for DSL Series Router' section on the …
- CVE-2025-59516HIGHCVSS 7.8EG 7.82025-12-09
Missing authentication for critical function in Windows Storage VSP Driver allows an authorized attacker to elevate privileges locally.
- CVE-2025-59695CRITICALCVSS 9.8EG 9.82025-12-02
Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a user with OS root access to alter firmware on the Chassis Management Board (without Authentication). This is called F04.
- CVE-2025-59780HIGHCVSS 7.5EG 7.52025-11-15
General Industrial Controls Lynx+ Gateway is missing critical authentication in the embedded web server which could allow an attacker to send GET requests to obtain sensitive device information.
- CVE-2025-60251MEDIUMCVSS 5.0EG 5.02025-09-26
Unitree Go2, G1, H1, and B2 devices through 2025-09-20 accept any handshake secret with the unitree substring.
- CVE-2025-60856MEDIUMCVSS 6.8EG 6.82025-10-20
Reolink Video Doorbell WiFi DB_566128M5MP_W allows root shell access through an unsecured UART/serial console. An attacker with physical access can connect to the exposed interface and execute arbitrary commands with root privileges. NOTE:…
- CVE-2025-61673HIGHCVSS 8.6EG 8.62025-10-03
Karapace is an open-source implementation of Kafka REST and Schema Registry. Versions 5.0.0 and 5.0.1 contain an authentication bypass vulnerability when configured to use OAuth 2.0 Bearer Token authentication. If a request is sent without…
- CVE-2025-61752HIGHCVSS 7.5EG 7.52025-10-21
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 14.1.1.0.0 and 14.1.2.0.0. Easily exploitable vulnerability allows unauthenticated attacker with …
- CVE-2025-61756HIGHCVSS 7.5EG 7.52025-10-21
Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications (component: System Configuration). Supported versions that are affected are 8.0.7.9, 8.0.8.7 and 8.1.…
- CVE-2025-61757CRITICALCVSS 9.8EG 9.8⚠ KEV2025-10-21
Vulnerability in the Identity Manager product of Oracle Fusion Middleware (component: REST WebServices). Supported versions that are affected are 12.2.1.4.0 and 14.1.2.1.0. Easily exploitable vulnerability allows unauthenticated attacker…
- CVE-2025-61777CRITICALCVSS 9.1EG 9.42025-10-06
Flag Forge is a Capture The Flag (CTF) platform. Starting in version 2.0.0 and prior to version 2.3.2, the `/api/admin/badge-templates` (GET) and `/api/admin/badge-templates/create` (POST) endpoints previously allowed access without authen…
- CVE-2025-61778CRITICALCVSS 9.3EG 9.32025-10-06
Akka.NET is a .NET port of the Akka project from the Scala / Java community. In all versions of Akka.Remote from v1.2.0 to v1.5.51, TLS could be enabled via our `akka.remote.dot-netty.tcp` transport and this would correctly enforce private…
- CVE-2025-61928CRITICALCVSS 9.3EG 9.32025-10-09
Better Auth is an authentication and authorization library for TypeScript. In versions prior to 1.3.26, unauthenticated attackers can create or modify API keys for any user by passing that user's id in the request body to the `api/auth/api…
- CVE-2025-61945CRITICALCVSS 9.8EG 10.02025-11-04
Radiometrics VizAir is vulnerable to any remote attacker via access to the admin panel of the VizAir system without authentication. Once inside, the attacker can modify critical weather parameters such as wind shear alerts, inversion depth…
- CVE-2025-61956CRITICALCVSS 9.8EG 10.02025-11-04
Radiometrics VizAir is vulnerable to a lack of authentication mechanisms for critical functions, such as admin access and API requests. Attackers can modify configurations without authentication, potentially manipulating active runway sett…
Map vulnerabilities like CWE-306 to your infrastructure
EchelonGraph correlates every CVE — across CWE-306 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →