Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-287 (认证机制不恰当) — Vulnerability Class 1203

1203 vulnerabilities classified as CWE-287 (认证机制不恰当). AI Chinese analysis included.

CWE-287 represents a critical authentication weakness where a system fails to adequately verify the identity of an actor claiming a specific identity. This flaw typically allows attackers to bypass security controls by exploiting insufficient verification mechanisms, enabling unauthorized access through stolen credentials, brute-force attacks, or session hijacking. When authentication logic is flawed, malicious entities can impersonate legitimate users, leading to severe data breaches and privilege escalation. Developers mitigate this risk by implementing robust, multi-factor authentication protocols and ensuring that identity verification processes are rigorous and resistant to common attack vectors. By strictly validating credentials against secure, hashed databases and employing adaptive security measures, organizations can significantly reduce the likelihood of unauthorized access, thereby protecting sensitive information and maintaining system integrity against sophisticated cyber threats.

MITRE CWE Description
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Common Consequences (1)
Integrity, Confidentiality, Availability, Access ControlRead Application Data, Gain Privileges or Assume Identity, Execute Unauthorized Code or Commands
This weakness can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or even execute arbitrary code.
Mitigations (1)
Architecture and DesignUse an authentication framework or library such as the OWASP ESAPI Authentication feature.
Examples (2)
The following code intends to ensure that the user is already logged in. If not, the code performs authentication with the user-provided username and password. If successful, it sets the loggedin and user cookies to "remember" that the user has already logged in. Finally, the code performs administrator tasks if the logged-in user has the "Administrator" username, as recorded in the user cookie.
my $q = new CGI; if ($q->cookie('loggedin') ne "true") { if (! AuthenticateUser($q->param('username'), $q->param('password'))) { ExitError("Error: you need to log in first"); } else { # Set loggedin and user cookies. $q->cookie( -name => 'loggedin', -value => 'true' ); $q->cookie( -name => 'user', -value => $q->param('username') ); } } if ($q->cookie('user') eq "Administrator") { DoAdministratorTasks(); }
Bad · Perl
GET /cgi-bin/vulnerable.cgi HTTP/1.1 Cookie: user=Administrator Cookie: loggedin=true [body of request]
Attack
In January 2009, an attacker was able to gain administrator access to a Twitter server because the server did not restrict the number of login attempts [REF-236]. The attacker targeted a member of Twitter's support team and was able to successfully guess the member's password using a brute force attack by guessing a large number of common words. After gaining access as the member of the support st…
CVE IDTitleCVSSSeverityPublished
CVE-2023-41751 Acronis Agent 授权问题漏洞 — Acronis Agent 7.5 -2023-08-31
CVE-2023-32202 Walchem Intuition Improper Authentication — Intuition 9 6.5 Medium2023-08-23
CVE-2023-4415 Ruijie RG-EW1200G login improper authentication — RG-EW1200G 7.3 High2023-08-18
CVE-2023-32453 Dell BIOS 授权问题漏洞 — CPG BIOS 4.6 Medium2023-08-16
CVE-2023-40020 Improper Authentication in PrivateUploader — PrivateUploader 9.9 Critical2023-08-14
CVE-2023-39531 Sentry vulnerable to incorrect credential validation on OAuth token requests — sentry 6.5 Medium2023-08-09
CVE-2023-4242 FULL - Customer <= 2.2.3 - Authenticated(Subscriber+) Information Disclosure via Health Check — FULL – Cliente 4.3 Medium2023-08-09
CVE-2023-38691 matrix-appservice-bridge doesn't verify the sub parameter of an openId token exhange, allowing unauthorized access to provisioning APIs — matrix-appservice-bridge 5.0 Medium2023-08-04
CVE-2023-20214 Cisco SD-WAN vManage 授权问题漏洞 — Cisco SD-WAN vManage 9.1 Critical2023-08-03
CVE-2023-3622 Access Control Bypass Vulnerability in the SolarWinds Platform — SolarWinds Platform 4.3 Medium2023-07-26
CVE-2023-2626 Authentication Bypass in OpenThread Boarder Router devices — Nest Hub Max 7.5 High2023-07-25
CVE-2023-37918 API token authentication bypass in HTTP endpoints in Dapr — dapr 6.8 Medium2023-07-21
CVE-2023-37471 User impersonation using SAMLv1.x SSO in Open Access Management — OpenAM 9.1 Critical2023-07-20
CVE-2023-3638 GeoVision GV-ADR2701 Improper Authentication — GV-ADR2701 9.8 Critical2023-07-19
CVE-2022-34155 WordPress OAuth Single Sign On – SSO (OAuth Client) Plugin <= 6.23.3 is vulnerable to Broken Authentication — OAuth Single Sign On – SSO (OAuth Client) 8.8 High2023-07-18
CVE-2023-37266 Weak json web token (JWT) secrets in CasaOS — CasaOS 9.8 Critical2023-07-17
CVE-2023-3591 Lack of previous password reset tokens on new token creation — Mattermost 4.8 Medium2023-07-17
CVE-2023-35901 IBM Robotic Process Automation security bypass — Robotic Process Automation 2.7 Low2023-07-16
CVE-2023-37268 User login confusion with SSO in warpgate — warpgate 6.4 Medium2023-07-14
CVE-2023-30560 PCU Configuration Lacks Authentication — BD Alarisâ„¢ Point-of-Care Unit (PCU) Model 8015 6.8 Medium2023-07-13
CVE-2023-31007 Apache Pulsar: Broker does not always disconnect client when authentication data expires — Apache Pulsar--2023-07-12
CVE-2023-3127 Improper Authentication in iSTAR — iSTAR Ultra 7.5 High2023-07-11
CVE-2023-33190 Improperly configured permissions in Sealos — sealos 10.0 Critical2023-06-29
CVE-2023-20199 Cisco Duo Two-Factor Authentication for macOS Authentication Bypass Vulnerability — Cisco Duo 6.2 Medium2023-06-28
CVE-2023-30945 CVE-2023-30945 — com.palantir.gotham:clips2 9.8 Critical2023-06-26
CVE-2023-35154 Knowage-Server vulnerable to account validation bypass — Knowage-Server 7.2 High2023-06-23
CVE-2023-28073 Dell BIOS 授权问题漏洞 — CPG BIOS 8.2 High2023-06-23
CVE-2023-34340 Apache Accumulo: Accumulo 2.1.0 may incorrectly validate cached credentials — Apache Accumulo 9.1 -2023-06-21
CVE-2023-3337 PuneethReddyHC Online Shopping System Advanced Admin Registration reg.php improper authentication — Online Shopping System Advanced 7.3 High2023-06-20
CVE-2023-2638 Rockwell Automation FactoryTalk System Services Vulnerable to a Denial-of-Service Attack — FactoryTalk System Services 5.9 Medium2023-06-13

Vulnerabilities classified as CWE-287 (认证机制不恰当) represent 1203 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.