Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-287 (认证机制不恰当) — Vulnerability Class 1203

1203 vulnerabilities classified as CWE-287 (认证机制不恰当). AI Chinese analysis included.

CWE-287 represents a critical authentication weakness where a system fails to adequately verify the identity of an actor claiming a specific identity. This flaw typically allows attackers to bypass security controls by exploiting insufficient verification mechanisms, enabling unauthorized access through stolen credentials, brute-force attacks, or session hijacking. When authentication logic is flawed, malicious entities can impersonate legitimate users, leading to severe data breaches and privilege escalation. Developers mitigate this risk by implementing robust, multi-factor authentication protocols and ensuring that identity verification processes are rigorous and resistant to common attack vectors. By strictly validating credentials against secure, hashed databases and employing adaptive security measures, organizations can significantly reduce the likelihood of unauthorized access, thereby protecting sensitive information and maintaining system integrity against sophisticated cyber threats.

MITRE CWE Description
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Common Consequences (1)
Integrity, Confidentiality, Availability, Access ControlRead Application Data, Gain Privileges or Assume Identity, Execute Unauthorized Code or Commands
This weakness can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or even execute arbitrary code.
Mitigations (1)
Architecture and DesignUse an authentication framework or library such as the OWASP ESAPI Authentication feature.
Examples (2)
The following code intends to ensure that the user is already logged in. If not, the code performs authentication with the user-provided username and password. If successful, it sets the loggedin and user cookies to "remember" that the user has already logged in. Finally, the code performs administrator tasks if the logged-in user has the "Administrator" username, as recorded in the user cookie.
my $q = new CGI; if ($q->cookie('loggedin') ne "true") { if (! AuthenticateUser($q->param('username'), $q->param('password'))) { ExitError("Error: you need to log in first"); } else { # Set loggedin and user cookies. $q->cookie( -name => 'loggedin', -value => 'true' ); $q->cookie( -name => 'user', -value => $q->param('username') ); } } if ($q->cookie('user') eq "Administrator") { DoAdministratorTasks(); }
Bad · Perl
GET /cgi-bin/vulnerable.cgi HTTP/1.1 Cookie: user=Administrator Cookie: loggedin=true [body of request]
Attack
In January 2009, an attacker was able to gain administrator access to a Twitter server because the server did not restrict the number of login attempts [REF-236]. The attacker targeted a member of Twitter's support team and was able to successfully guess the member's password using a brute force attack by guessing a large number of common words. After gaining access as the member of the support st…
CVE IDTitleCVSSSeverityPublished
CVE-2022-36960 SolarWinds Platform Improper Input Validation — SolarWinds Platform 8.8 High2022-11-29
CVE-2022-41912 crewjam/saml go library is vulnerable to signature bypass via multiple Assertion elements — saml 9.1 Critical2022-11-28
CVE-2022-37931 A vulnerability in NetBatch-Plus software allows unauthorized access to the application — NetBatch-Plus software 7.3 High2022-11-22
CVE-2022-40602 Zyxel LTE3301-M209 信任管理问题漏洞 — LTE3301-M209 9.8 Critical2022-11-22
CVE-2022-3477 tagDiv Composer < 3.5 - Unauthenticated Account Takeover — tagDiv Composer 8.1 -2022-11-14
CVE-2022-34331 IBM Power FW security bypass — Power FW 5.5 Medium2022-11-11
CVE-2022-39038 FLOWRING Agentflow BPM - Broken Access Control — Agentflow BPM 8.8 High2022-11-10
CVE-2022-38119 POWERCOM CO., LTD. UPSMON PRO - Broken Authentication — UPSMON PRO 9.8 Critical2022-11-10
CVE-2022-39892 Samsung Pass 授权问题漏洞 — Samsung Pass 3.6 Low2022-11-09
CVE-2022-39387 XWiki OIDC Authenticator vulnerable to OpenID login bypass due to improper authentication — oidc 9.1 Critical2022-11-04
CVE-2022-43451 Multiple path traversal in appspawn and nwebspawn services. — OpenHarmony 8.4 High2022-11-03
CVE-2022-39019 Broken access controls on PDFtron WebviewerUI in M-Files Hubshare — Hubshare 6.3 Medium2022-10-31
CVE-2022-38744 FactoryTalk Alarm and Events Server Vulnerable to Denial-Of-Service Attack — FactoryTalk Alarm and Events Server 7.5 High2022-10-27
CVE-2022-3674 SourceCodester Sanitization Management System missing authentication — Sanitization Management System 7.3 High2022-10-26
CVE-2022-39355 Discourse Patreon vulnerable to improper validation of email during Patreon authentication — discourse-patreon 9.1 Critical2022-10-26
CVE-2022-39267 Brokercap Bifrost vulnerable to authentication bypass for admin and monitor user groups — Bifrost 8.8 High2022-10-19
CVE-2022-22237 Junos OS: Peers not configured for TCP-AO can establish a BGP or LDP session even if authentication is configured locally — Junos OS 6.5 Medium2022-10-18
CVE-2022-31122 Wire-server vulnerable to Token Recipient Confusion resulting in account impersonation, deletion or malicious account creation — wire-server 9.8 Critical2022-10-18
CVE-2022-23769 Secuever reverseWall-MDS Remote Code Execution Vulnerability — reverseWall-MDS 7.5 High2022-10-17
CVE-2022-42463 Softbus_server in communication subsystem has a authenication bypass vulnerability in a callback handler function. Attackers can launch attacks on distributed networks by sending Bluetooth rfcomm packets to any remote device and executing arbitrary co ... — OpenHarmony 8.3 High2022-10-14
CVE-2022-42488 Startup subsystem missed permission validation in param service. An malicious application installed on the device could elevate its privileges to the root user, disable security features, or cause DoS by disabling particular services. — OpenHarmony 8.4 High2022-10-14
CVE-2022-39229 Grafana users with email as a username can block other users from signing in — grafana 4.3 Medium2022-10-13
CVE-2022-3465 Mediabridge Medialink index.asp improper authentication — Medialink 7.3 High2022-10-12
CVE-2022-40664 Authentication Bypass Vulnerability in Shiro when forwarding or including via RequestDispatcher — Apache Shiro 9.8 -2022-10-12
CVE-2022-39290 CSRF key bypass using HTTP methods in zoneminder — zoneminder 8.0 High2022-10-07
CVE-2022-20662 Cisco Duo for macOS Authentication Bypass Vulnerability — Cisco Duo 6.1 Medium2022-09-30
CVE-2022-39263 NextAuth.js Upstash Adapter missing token verification — next-auth 6.8 Medium2022-09-28
CVE-2022-22523 Carlo Gavazzi UWP 3.0 WebApp allows for authentication bypass — UWP 3.0 Monitoring Gateway and Controller 7.5 High2022-09-28
CVE-2022-39219 Bifrost users using basic authntication can bypass write permission limit — Bifrost 8.5 High2022-09-26
CVE-2022-3119 OAuth client Single Sign On for WordPress < 3.0.4 - Unauthenticated Settings Update to Authentication Bypass — OAuth client Single Sign On for WordPress ( OAuth 2.0 SSO ) 9.1 -2022-09-26

Vulnerabilities classified as CWE-287 (认证机制不恰当) represent 1203 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.