Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-287 (认证机制不恰当) — Vulnerability Class 1203

1203 vulnerabilities classified as CWE-287 (认证机制不恰当). AI Chinese analysis included.

CWE-287 represents a critical authentication weakness where a system fails to adequately verify the identity of an actor claiming a specific identity. This flaw typically allows attackers to bypass security controls by exploiting insufficient verification mechanisms, enabling unauthorized access through stolen credentials, brute-force attacks, or session hijacking. When authentication logic is flawed, malicious entities can impersonate legitimate users, leading to severe data breaches and privilege escalation. Developers mitigate this risk by implementing robust, multi-factor authentication protocols and ensuring that identity verification processes are rigorous and resistant to common attack vectors. By strictly validating credentials against secure, hashed databases and employing adaptive security measures, organizations can significantly reduce the likelihood of unauthorized access, thereby protecting sensitive information and maintaining system integrity against sophisticated cyber threats.

MITRE CWE Description
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Common Consequences (1)
Integrity, Confidentiality, Availability, Access ControlRead Application Data, Gain Privileges or Assume Identity, Execute Unauthorized Code or Commands
This weakness can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or even execute arbitrary code.
Mitigations (1)
Architecture and DesignUse an authentication framework or library such as the OWASP ESAPI Authentication feature.
Examples (2)
The following code intends to ensure that the user is already logged in. If not, the code performs authentication with the user-provided username and password. If successful, it sets the loggedin and user cookies to "remember" that the user has already logged in. Finally, the code performs administrator tasks if the logged-in user has the "Administrator" username, as recorded in the user cookie.
my $q = new CGI; if ($q->cookie('loggedin') ne "true") { if (! AuthenticateUser($q->param('username'), $q->param('password'))) { ExitError("Error: you need to log in first"); } else { # Set loggedin and user cookies. $q->cookie( -name => 'loggedin', -value => 'true' ); $q->cookie( -name => 'user', -value => $q->param('username') ); } } if ($q->cookie('user') eq "Administrator") { DoAdministratorTasks(); }
Bad · Perl
GET /cgi-bin/vulnerable.cgi HTTP/1.1 Cookie: user=Administrator Cookie: loggedin=true [body of request]
Attack
In January 2009, an attacker was able to gain administrator access to a Twitter server because the server did not restrict the number of login attempts [REF-236]. The attacker targeted a member of Twitter's support team and was able to successfully guess the member's password using a brute force attack by guessing a large number of common words. After gaining access as the member of the support st…
CVE IDTitleCVSSSeverityPublished
CVE-2024-22245 Arbitrary Authentication Relay Vulnerability in Deprecated EAP Browser Plugin — VMware Enhanced Authentication Plug-in (EAP) 9.6 Critical2024-02-20
CVE-2022-41737 IBM Spectrum Scale security bypass — Storage Scale Container Native Storage Access 7.1 High2024-02-17
CVE-2022-41738 IBM Spectrum Scale security bypass — Storage Scale Container Native Storage Access 7.5 High2024-02-17
CVE-2024-20738 Adobe FrameMaker Publishing Server Authentication Bypass Vulnerability | CVE-2023-44324 bypass — Adobe Framemaker Publishing Server 9.8 Critical2024-02-15
CVE-2024-25618 External OpenID Connect Account Takeover by E-Mail Change in mastodon — mastodon 4.2 Medium2024-02-14
CVE-2024-0568 Schneider Electric Harmony Control Relay 授权问题漏洞 — Harmony Control Relay RMNF22TB30 8.8 High2024-02-14
CVE-2024-21410 Microsoft Exchange Server Elevation of Privilege Vulnerability — Microsoft Exchange Server 2016 Cumulative Update 23 9.8 Critical2024-02-13
CVE-2024-23813 Siemens Polarion ALM 授权问题漏洞 — Polarion ALM 7.3 High2024-02-13
CVE-2024-22394 SonicWALL SonicOS 授权问题漏洞 — SonicOS 9.8 -2024-02-08
CVE-2023-39196 Apache Ozone: Missing mutual TLS authentication in one of the service internal Ozone Storage Container Manager endpoints — Apache Ozone 5.3 Medium2024-02-07
CVE-2023-39303 QTS, QuTS hero, QuTScloud — QTS 5.3 Medium2024-02-02
CVE-2024-23637 OctoPrint Unverified Password Change via Access Control Settings — OctoPrint 4.2 Medium2024-01-31
CVE-2024-23647 PKCE downgrade attack in Authentik — authentik 6.5 Medium2024-01-30
CVE-2024-1006 Shanxi Diankeyun Technology NODERP Cookie common.php improper authentication — NODERP 7.3 High2024-01-29
CVE-2024-23792 Insufficient access control — OTRS 5.3 Medium2024-01-29
CVE-2024-0988 Sichuan Yougou Technology KuERP common.php checklogin improper authentication — KuERP 6.3 Medium2024-01-29
CVE-2024-23629 Motorola MR2600 Authentication Bypass Vulnerability — MR2600 9.6 Critical2024-01-25
CVE-2024-0879 Authentication bypass in vector-admin domain restriction — vector-admin 6.5 Medium2024-01-25
CVE-2023-52111 Huawei HarmonyOS 安全漏洞 — HarmonyOS 7.5AIHighAI2024-01-16
CVE-2024-21654 rubygems.org MFA Bypass through password reset function could allow account takeover — rubygems.org 4.8 Medium2024-01-12
CVE-2023-7210 OneNav API improper authentication — OneNav 7.3 High2024-01-07
CVE-2024-21632 omniauth-microsoft_graph vulnerable to account takeover (nOAuth) — omniauth-microsoft_graph 8.6 High2024-01-02
CVE-2023-7079 Arbitrary remote file read in Wrangler dev server — wrangler 6.4 Medium2023-12-29
CVE-2023-49790 App PIN code can be bypassed in Nextcloud Files iOS — security-advisories 4.3 Medium2023-12-22
CVE-2023-6847 Improper Authentication in GitHub Enterprise Server leading to Authentication Bypass for Public Repository Data — Enterprise Server 7.5 High2023-12-21
CVE-2023-51442 Authentication bypass vulnerability in navidrome's subsonic endpoint — navidrome 8.6 High2023-12-21
CVE-2023-6768 Authentication bypass vulnerability in Amazing Little Poll — Amazing Little poll 9.4 Critical2023-12-20
CVE-2023-37544 Apache Pulsar WebSocket Proxy: Improper Authentication for WebSocket Proxy Endpoint Allows DoS — Apache Pulsar WebSocket Proxy 7.5 High2023-12-20
CVE-2023-6483 Improper Authentication Vulnerability in ADiTaaS — Allied Digital Integrated Tool-as-a-Service 9.1 Critical2023-12-18
CVE-2023-6907 codelyfe Stupid Simple CMS Deletion Interface delete.php improper authentication — Stupid Simple CMS 5.4 Medium2023-12-18

Vulnerabilities classified as CWE-287 (认证机制不恰当) represent 1203 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.