Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-287 (认证机制不恰当) — Vulnerability Class 1203

1203 vulnerabilities classified as CWE-287 (认证机制不恰当). AI Chinese analysis included.

CWE-287 represents a critical authentication weakness where a system fails to adequately verify the identity of an actor claiming a specific identity. This flaw typically allows attackers to bypass security controls by exploiting insufficient verification mechanisms, enabling unauthorized access through stolen credentials, brute-force attacks, or session hijacking. When authentication logic is flawed, malicious entities can impersonate legitimate users, leading to severe data breaches and privilege escalation. Developers mitigate this risk by implementing robust, multi-factor authentication protocols and ensuring that identity verification processes are rigorous and resistant to common attack vectors. By strictly validating credentials against secure, hashed databases and employing adaptive security measures, organizations can significantly reduce the likelihood of unauthorized access, thereby protecting sensitive information and maintaining system integrity against sophisticated cyber threats.

MITRE CWE Description
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Common Consequences (1)
Integrity, Confidentiality, Availability, Access ControlRead Application Data, Gain Privileges or Assume Identity, Execute Unauthorized Code or Commands
This weakness can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or even execute arbitrary code.
Mitigations (1)
Architecture and DesignUse an authentication framework or library such as the OWASP ESAPI Authentication feature.
Examples (2)
The following code intends to ensure that the user is already logged in. If not, the code performs authentication with the user-provided username and password. If successful, it sets the loggedin and user cookies to "remember" that the user has already logged in. Finally, the code performs administrator tasks if the logged-in user has the "Administrator" username, as recorded in the user cookie.
my $q = new CGI; if ($q->cookie('loggedin') ne "true") { if (! AuthenticateUser($q->param('username'), $q->param('password'))) { ExitError("Error: you need to log in first"); } else { # Set loggedin and user cookies. $q->cookie( -name => 'loggedin', -value => 'true' ); $q->cookie( -name => 'user', -value => $q->param('username') ); } } if ($q->cookie('user') eq "Administrator") { DoAdministratorTasks(); }
Bad · Perl
GET /cgi-bin/vulnerable.cgi HTTP/1.1 Cookie: user=Administrator Cookie: loggedin=true [body of request]
Attack
In January 2009, an attacker was able to gain administrator access to a Twitter server because the server did not restrict the number of login attempts [REF-236]. The attacker targeted a member of Twitter's support team and was able to successfully guess the member's password using a brute force attack by guessing a large number of common words. After gaining access as the member of the support st…
CVE IDTitleCVSSSeverityPublished
CVE-2022-4001 Motorola Q14 安全漏洞 — Q14 Mesh Router Firmware 7.3 High2024-07-31
CVE-2022-4002 Motorola Q14 安全漏洞 — Q14 Mesh Router Firmware 7.2 High2024-07-31
CVE-2024-6576 MOVEit Transfer Privilege Escalation Vulnerability — MOVEit Transfer 7.3 High2024-07-29
CVE-2024-7050 OpenText Directory Services 安全漏洞 — OpenText Directory Services 9.1 -2024-07-26
CVE-2024-41800 Craft CMS Allows TOTP Token To Stay Valid After Use — cms 4.8 Medium2024-07-25
CVE-2024-40648 `UserIdentity::is_verified` not checking verification status of own user identity while performing the check in matrix-rust-sdk — matrix-rust-sdk 5.4 Medium2024-07-18
CVE-2024-23471 SolarWinds Access Rights Manager (ARM) CreateFile Directory Traversal Remote Code Execution Vulnerability — Access Rights Manager 9.6 Critical2024-07-17
CVE-2024-23470 SolarWinds Access Rights Manager (ARM) UserScriptHumster Exposed Dangerous Method Remote Command Execution Vulnerability — Access Rights Manager 9.6 Critical2024-07-17
CVE-2024-23465 SolarWinds Access Rights Manager (ARM) ChangeHumster Exposed Dangerous Method Authentication Bypass Vulnerability — Access Rights Manager 8.3 High2024-07-17
CVE-2024-28992 SolarWinds Access Rights Manager Directory Traversal and Information Disclosure Vulnerability — Access Rights Manager 7.6 High2024-07-17
CVE-2024-39767 Spoofed push notifications from malicious server — Mattermost 4.2 Medium2024-07-15
CVE-2024-38099 Windows Remote Desktop Licensing Service Denial of Service Vulnerability — Windows Server 2019 5.9 Medium2024-07-09
CVE-2024-39830 Timing attack during remote cluster token comparison when shared channels are enabled — Mattermost 8.1 High2024-07-03
CVE-2024-3826 Broken SAML Validation — Akana API Platform 9.1AICriticalAI2024-07-02
CVE-2024-38523 Hush Line OTP issue — hushline 7.5 High2024-06-27
CVE-2024-5012 WhatsUp Gold Missing Authentication GetWindowsCredential Information Disclosure Vulnerability — WhatsUp Gold 8.6 High2024-06-25
CVE-2024-5806 MOVEit Transfer Authentication Bypass Vulnerability — MOVEit Transfer 9.1 Critical2024-06-25
CVE-2024-5805 MOVEit Gateway Authentication Bypass Vulnerability — MOVEit Gateway 9.1 Critical2024-06-25
CVE-2024-37233 WordPress Play.ht plugin <= 3.6.4 - Broken Access Control vulnerability — Play.ht 4.3 Medium2024-06-24
CVE-2024-37897 Insufficient access control for password reset in sftpgo — sftpgo 5.4 Medium2024-06-20
CVE-2024-38351 Password auth and OAuth2 unverified email linking — pocketbase 5.4 Medium2024-06-18
CVE-2024-37893 MFA bypass in oauth flow in Firefly III — firefly-iii 5.9 Medium2024-06-17
CVE-2024-37313 Nextcloud server allows the by-pass the second factor — security-advisories 7.3 High2024-06-14
CVE-2024-37368 Rockwell Automation FactoryTalk® View SE v11 Information Leakage Vulnerability via Authentication Restriction — FactoryTalk® View SE 5.3AIMediumAI2024-06-14
CVE-2024-37367 Rockwell Automation FactoryTalk® View SE v12 Information Leakage Vulnerability via Authentication Restriction — FactoryTalk® View SE 5.3AIMediumAI2024-06-14
CVE-2024-3080 ASUS Router - Improper Authentication — ZenWiFi XT8 9.8 Critical2024-06-14
CVE-2024-30299 Tenable Vulnerability Disclosure | API Auth Bypass — Adobe Framemaker Publishing Server 10.0 Critical2024-06-13
CVE-2024-34103 Customer account takeover via web API call & subsequent password reset — Adobe Commerce 8.1 High2024-06-13
CVE-2024-5798 Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims — Vault 2.6 Low2024-06-12
CVE-2024-36264 Apache Submarine Commons Utils: default secret — Apache Submarine Commons Utils 7.5AIHighAI2024-06-12

Vulnerabilities classified as CWE-287 (认证机制不恰当) represent 1203 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.