Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-287 (认证机制不恰当) — Vulnerability Class 1203

1203 vulnerabilities classified as CWE-287 (认证机制不恰当). AI Chinese analysis included.

CWE-287 represents a critical authentication weakness where a system fails to adequately verify the identity of an actor claiming a specific identity. This flaw typically allows attackers to bypass security controls by exploiting insufficient verification mechanisms, enabling unauthorized access through stolen credentials, brute-force attacks, or session hijacking. When authentication logic is flawed, malicious entities can impersonate legitimate users, leading to severe data breaches and privilege escalation. Developers mitigate this risk by implementing robust, multi-factor authentication protocols and ensuring that identity verification processes are rigorous and resistant to common attack vectors. By strictly validating credentials against secure, hashed databases and employing adaptive security measures, organizations can significantly reduce the likelihood of unauthorized access, thereby protecting sensitive information and maintaining system integrity against sophisticated cyber threats.

MITRE CWE Description
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Common Consequences (1)
Integrity, Confidentiality, Availability, Access ControlRead Application Data, Gain Privileges or Assume Identity, Execute Unauthorized Code or Commands
This weakness can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or even execute arbitrary code.
Mitigations (1)
Architecture and DesignUse an authentication framework or library such as the OWASP ESAPI Authentication feature.
Examples (2)
The following code intends to ensure that the user is already logged in. If not, the code performs authentication with the user-provided username and password. If successful, it sets the loggedin and user cookies to "remember" that the user has already logged in. Finally, the code performs administrator tasks if the logged-in user has the "Administrator" username, as recorded in the user cookie.
my $q = new CGI; if ($q->cookie('loggedin') ne "true") { if (! AuthenticateUser($q->param('username'), $q->param('password'))) { ExitError("Error: you need to log in first"); } else { # Set loggedin and user cookies. $q->cookie( -name => 'loggedin', -value => 'true' ); $q->cookie( -name => 'user', -value => $q->param('username') ); } } if ($q->cookie('user') eq "Administrator") { DoAdministratorTasks(); }
Bad · Perl
GET /cgi-bin/vulnerable.cgi HTTP/1.1 Cookie: user=Administrator Cookie: loggedin=true [body of request]
Attack
In January 2009, an attacker was able to gain administrator access to a Twitter server because the server did not restrict the number of login attempts [REF-236]. The attacker targeted a member of Twitter's support team and was able to successfully guess the member's password using a brute force attack by guessing a large number of common words. After gaining access as the member of the support st…
CVE IDTitleCVSSSeverityPublished
CVE-2024-6248 Wyze Cam v3 Cloud Infrastructure Improper Authentication Remote Code Execution Vulnerability — Cam v3 8.8 -2024-11-22
CVE-2024-11494 Zyxel P-6101C 授权问题漏洞 — P-6101C firmware 7.5 High2024-11-20
CVE-2024-47533 Cobbler allows anyone to connect to cobbler XML-RPC server with a known password and make changes — cobbler 9.8 Critical2024-11-18
CVE-2024-52518 Nextcloud Server is missing password confirmation when changing external storage options — security-advisories 4.4 Medium2024-11-15
CVE-2024-11209 Apereo CAS 2FA login improper authentication — CAS 6.3 Medium2024-11-14
CVE-2024-51996 Symphony has an Authentication Bypass via RememberMe — symfony 7.5 High2024-11-13
CVE-2024-49039 Windows Task Scheduler Elevation of Privilege Vulnerability — Windows Server 2025 8.8 High2024-11-12
CVE-2024-51997 The Attestation Results Token can be arbitrarily modified without being detected in Trustee — trustee 8.1 High2024-11-08
CVE-2024-10963 Pam: improper hostname interpretation in pam_access leads to access control bypass 7.4 High2024-11-07
CVE-2024-50341 Security::login does not take into account custom user_checker in symfony/security-bundle — symfony 3.1 Low2024-11-06
CVE-2024-9946 Social Share, Social Login and Social Comments Plugin – Super Socializer <= 7.13.68 - Authentication Bypass via Disqus OAuth provider — Social Share, Social Login and Social Comments Plugin – Super Socializer 8.1 High2024-11-06
CVE-2024-10020 Heateor Social Login WordPress <= 1.1.35 - Authentication Bypass via Disqus OAuth provider — Heateor Social Login WordPress 8.1 High2024-11-06
CVE-2023-29117 Authentication Bypass in JuiceBox Web Manager interface — JuiceBox Pro 3.0 22kW Cellular 8.8 High2024-11-05
CVE-2024-10114 Social Login - WordPress / WooCommerce Plugin <= 2.7.7 - Authentication Bypass via WordPress.com OAuth provider — WooCommerce - Social Login 8.1 High2024-11-05
CVE-2024-10097 Loginizer Security and Loginizer <= 1.9.2 - Authentication Bypass via WordPress.com OAuth provider — Loginizer Security 8.1 High2024-11-05
CVE-2024-10620 knightliao Disconf Configuration Center list improper authentication — Disconf 5.3 Medium2024-11-01
CVE-2024-49755 Duende IdentityServer has insufficient validation of DPoP cnf claim in Local APIs — IdentityServer 3.1 Low2024-10-28
CVE-2024-49757 Zitadel User Registration Bypass Vulnerability — zitadel 7.5 High2024-10-25
CVE-2024-49376 Autolab Has Misconfigured Reset Password Permissions — Autolab 8.8 -2024-10-25
CVE-2024-10327 Okta Verify 安全漏洞 — Okta Verify for iOS 8.1 High2024-10-24
CVE-2024-7763 WhatsUp Gold getReport Missing Authentication Authentication Bypass Vulnerability — WhatsUp Gold 9.8 Critical2024-10-24
CVE-2024-9947 ProfilePress - Pro <= 4.11.1 - Authentication Bypass via WordPress.com OAuth provider — ProfilePress Pro 8.1 High2024-10-23
CVE-2024-9927 WooCommerce Order Proposal <= 2.0.5 - Authenticated (Shop Manager+) Privilege Escalation via Order Proposal — WooCommerce Order Proposal 7.2 High2024-10-23
CVE-2024-10173 didi DDMQ Console Module improper authentication — DDMQ 7.3 High2024-10-20
CVE-2023-22650 Rancher does not automatically clean up a user deleted or disabled from the configured Authentication Provider — rancher 8.8 High2024-10-16
CVE-2024-45216 Apache Solr: Authentication bypass possible using a fake URL Path ending — Apache Solr 9.8 -2024-10-16
CVE-2020-36832 Indeed Membership Pro 7.3 - 8.6 - Authentication Bypass — Indeed Membership Pro 9.8 Critical2024-10-16
CVE-2024-38139 Microsoft Dataverse Elevation of Privilege Vulnerability — Microsoft Dataverse 8.7 High2024-10-15
CVE-2024-45115 Adobe Commerce | Improper Authentication (CWE-287) — Adobe Commerce 9.8 Critical2024-10-10
CVE-2024-45148 Adobe Commerce | Improper Authentication (CWE-287) — Adobe Commerce 8.8 High2024-10-10

Vulnerabilities classified as CWE-287 (认证机制不恰当) represent 1203 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.