Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-287 (认证机制不恰当) — Vulnerability Class 1203

1203 vulnerabilities classified as CWE-287 (认证机制不恰当). AI Chinese analysis included.

CWE-287 represents a critical authentication weakness where a system fails to adequately verify the identity of an actor claiming a specific identity. This flaw typically allows attackers to bypass security controls by exploiting insufficient verification mechanisms, enabling unauthorized access through stolen credentials, brute-force attacks, or session hijacking. When authentication logic is flawed, malicious entities can impersonate legitimate users, leading to severe data breaches and privilege escalation. Developers mitigate this risk by implementing robust, multi-factor authentication protocols and ensuring that identity verification processes are rigorous and resistant to common attack vectors. By strictly validating credentials against secure, hashed databases and employing adaptive security measures, organizations can significantly reduce the likelihood of unauthorized access, thereby protecting sensitive information and maintaining system integrity against sophisticated cyber threats.

MITRE CWE Description
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Common Consequences (1)
Integrity, Confidentiality, Availability, Access ControlRead Application Data, Gain Privileges or Assume Identity, Execute Unauthorized Code or Commands
This weakness can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or even execute arbitrary code.
Mitigations (1)
Architecture and DesignUse an authentication framework or library such as the OWASP ESAPI Authentication feature.
Examples (2)
The following code intends to ensure that the user is already logged in. If not, the code performs authentication with the user-provided username and password. If successful, it sets the loggedin and user cookies to "remember" that the user has already logged in. Finally, the code performs administrator tasks if the logged-in user has the "Administrator" username, as recorded in the user cookie.
my $q = new CGI; if ($q->cookie('loggedin') ne "true") { if (! AuthenticateUser($q->param('username'), $q->param('password'))) { ExitError("Error: you need to log in first"); } else { # Set loggedin and user cookies. $q->cookie( -name => 'loggedin', -value => 'true' ); $q->cookie( -name => 'user', -value => $q->param('username') ); } } if ($q->cookie('user') eq "Administrator") { DoAdministratorTasks(); }
Bad · Perl
GET /cgi-bin/vulnerable.cgi HTTP/1.1 Cookie: user=Administrator Cookie: loggedin=true [body of request]
Attack
In January 2009, an attacker was able to gain administrator access to a Twitter server because the server did not restrict the number of login attempts [REF-236]. The attacker targeted a member of Twitter's support team and was able to successfully guess the member's password using a brute force attack by guessing a large number of common words. After gaining access as the member of the support st…
CVE IDTitleCVSSSeverityPublished
CVE-2021-28494 Arista Networks MOS 授权问题漏洞 — Metamako Operating System 9.6 Critical2021-09-09
CVE-2021-28493 Arista Networks MOS 授权问题漏洞 — Metamako Operating System 8.4 High2021-09-09
CVE-2021-28495 Arista Networks MOS 授权问题漏洞 — Metamako Operating System 7.2 High2021-09-09
CVE-2021-39196 Authenticated non-privileged user can request unfiltered data without adequate permissions in pcapture — pcapture 7.7 High2021-09-07
CVE-2021-22943 Ubiquiti Networks UniFi Protect 授权问题漏洞 — UniFi Protect application 9.6 -2021-08-31
CVE-2021-34578 WAGO: Authentication Vulnerability in Web-Based Management — PLC 9.8 Critical2021-08-31
CVE-2021-39177 User impersonation due to incorrect handling of the login JWT — Geyser 7.4 High2021-08-30
CVE-2021-39165 Unauthenticated SQL Injection — Cachet 8.1 High2021-08-26
CVE-2021-29487 Authentication bypass in Octobercms — october 7.4 High2021-08-26
CVE-2021-32648 Account Takeover in Octobercms — october 8.2 High2021-08-26
CVE-2021-39138 New anonymous user session acts as if it's created with password — parse-server 4.8 Medium2021-08-18
CVE-2021-3458 Motorola MM1000 授权问题漏洞 — MM1000 MoCA Adapter 6.1 Medium2021-08-17
CVE-2021-24527 Profile Builder < 3.4.9 - Admin Access via Password Reset — User Registration & User Profile – Profile Builder 9.8 -2021-08-16
CVE-2021-3046 PAN-OS: Improper SAML Authentication Vulnerability in GlobalProtect Portal — PAN-OS 6.8 Medium2021-08-11
CVE-2021-37172 SIMATIC S7-1200 授权问题漏洞 — SIMATIC S7-1200 CPU family (incl. SIPLUS variants) 7.5 -2021-08-10
CVE-2021-25445 Samsung Internet 授权问题漏洞 — Samsung Internet 4.3 -2021-08-05
CVE-2021-21538 DELL Dell EMC iDRAC9 授权问题漏洞 — Integrated Dell Remote Access Controller (iDRAC) 9.6 Critical2021-07-29
CVE-2021-32794 Accidental removal of IPCPassword (< 5.1.2.4) — ArchiSteamFarm 6.8 Medium2021-07-26
CVE-2021-25430 Bluetooth 授权问题漏洞 — Samsung Mobile Devices 3.5 -2021-07-08
CVE-2021-32738 Utils.readChallengeTx does not verify the server account signature — js-stellar-sdk 6.5 Medium2021-07-02
CVE-2021-35029 ZyXEL ZyWALL USG 授权问题漏洞 — USG/Zywall series Firmware 9.8 Critical2021-07-02
CVE-2019-18906 cryptctl: client side password hashing is equivalent to clear text password storage — SUSE Linux Enterprise Server for SAP 12-SP5 9.8 Critical2021-06-30
CVE-2021-33539 WEIDMUELLER: WLAN devices affected by authentication bypass vulnerability — IE-WL(T)-BL-AP-CL-XX 7.2 High2021-06-25
CVE-2021-32693 Authentication granted with multiple firewalls — symfony 6.8 Medium2021-06-17
CVE-2021-1542 Cisco Small Business 220 Series Smart Switches Vulnerabilities — Cisco Small Business 220 Series Smart Plus Switches 7.2 High2021-06-16
CVE-2021-1543 Cisco Small Business 220 Series Smart Switches Vulnerabilities — Cisco Small Business 220 Series Smart Plus Switches 7.2 High2021-06-16
CVE-2021-1571 Cisco Small Business 220 Series Smart Switches Vulnerabilities — Cisco Small Business 220 Series Smart Plus Switches 7.2 High2021-06-16
CVE-2021-1541 Cisco Small Business 220 Series Smart Switches Vulnerabilities — Cisco Small Business 220 Series Smart Plus Switches 7.2 High2021-06-16
CVE-2021-22764 Schneider Electric PowerLogic 授权问题漏洞 — PowerLogic PM55xx, PowerLogic EGX100, and PowerLogic EGX300 (see security notification for version infromation) 5.3 -2021-06-11
CVE-2021-25389 Samsung SMR 授权问题漏洞 — Samsung Mobile Devices 2.3 Low2021-06-11

Vulnerabilities classified as CWE-287 (认证机制不恰当) represent 1203 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.