Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-287 (认证机制不恰当) — Vulnerability Class 1203

1203 vulnerabilities classified as CWE-287 (认证机制不恰当). AI Chinese analysis included.

CWE-287 represents a critical authentication weakness where a system fails to adequately verify the identity of an actor claiming a specific identity. This flaw typically allows attackers to bypass security controls by exploiting insufficient verification mechanisms, enabling unauthorized access through stolen credentials, brute-force attacks, or session hijacking. When authentication logic is flawed, malicious entities can impersonate legitimate users, leading to severe data breaches and privilege escalation. Developers mitigate this risk by implementing robust, multi-factor authentication protocols and ensuring that identity verification processes are rigorous and resistant to common attack vectors. By strictly validating credentials against secure, hashed databases and employing adaptive security measures, organizations can significantly reduce the likelihood of unauthorized access, thereby protecting sensitive information and maintaining system integrity against sophisticated cyber threats.

MITRE CWE Description
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Common Consequences (1)
Integrity, Confidentiality, Availability, Access ControlRead Application Data, Gain Privileges or Assume Identity, Execute Unauthorized Code or Commands
This weakness can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or even execute arbitrary code.
Mitigations (1)
Architecture and DesignUse an authentication framework or library such as the OWASP ESAPI Authentication feature.
Examples (2)
The following code intends to ensure that the user is already logged in. If not, the code performs authentication with the user-provided username and password. If successful, it sets the loggedin and user cookies to "remember" that the user has already logged in. Finally, the code performs administrator tasks if the logged-in user has the "Administrator" username, as recorded in the user cookie.
my $q = new CGI; if ($q->cookie('loggedin') ne "true") { if (! AuthenticateUser($q->param('username'), $q->param('password'))) { ExitError("Error: you need to log in first"); } else { # Set loggedin and user cookies. $q->cookie( -name => 'loggedin', -value => 'true' ); $q->cookie( -name => 'user', -value => $q->param('username') ); } } if ($q->cookie('user') eq "Administrator") { DoAdministratorTasks(); }
Bad · Perl
GET /cgi-bin/vulnerable.cgi HTTP/1.1 Cookie: user=Administrator Cookie: loggedin=true [body of request]
Attack
In January 2009, an attacker was able to gain administrator access to a Twitter server because the server did not restrict the number of login attempts [REF-236]. The attacker targeted a member of Twitter's support team and was able to successfully guess the member's password using a brute force attack by guessing a large number of common words. After gaining access as the member of the support st…
CVE IDTitleCVSSSeverityPublished
CVE-2019-15987 Cisco WebEx Centers Username Enumeration Information Disclosure Vulnerability — Cisco WebEx Event Center 5.3 -2019-11-26
CVE-2019-13531 Medtronic Valleylab FT10 and LS10 Improper Authentication — Valleylab FT10 Energy Platform (VLFT10GEN) 4.8 Medium2019-11-08
CVE-2019-6832 Schneider Electric Wiser for KNX和spaceLYnk 授权问题漏洞 — spaceLYnk 8.3 -2019-09-17
CVE-2019-12643 Cisco REST API Container for IOS XE Software Authentication Bypass Vulnerability — Cisco IOS XE Software 9.8 -2019-08-28
CVE-2019-13423 floragunn Search Guard Kibana Plugin 权限许可和访问控制问题漏洞 — Search Guard Kibana Plugin 8.8 -2019-08-23
CVE-2019-1938 Cisco UCS Director and Cisco UCS Director Express for Big Data API Authentication Bypass Vulnerability — Cisco Unified Computing System Director 9.8 -2019-08-21
CVE-2019-1974 Cisco IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Authentication Bypass Vulnerability — Cisco Unified Computing System Director 9.8 -2019-08-21
CVE-2019-1937 Cisco Integrated Management Controller Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Authentication Bypass Vulnerability — Cisco Unified Computing System Director 9.8 -2019-08-21
CVE-2019-1946 Cisco Enterprise NFV Infrastructure Software Web-Based Management Interface Authentication Bypass Vulnerability — Cisco Enterprise NFV Infrastructure Software 6.5 -2019-08-08
CVE-2019-5449 Nextcloud 信息泄露漏洞 — Nextcloud Server 4.3 -2019-07-30
CVE-2019-1917 Cisco Vision Dynamic Signage Director REST API Authentication Bypass Vulnerability — Cisco Vision Dynamic Signage Director 9.8 -2019-07-17
CVE-2019-10966 GE Aestiva和GE Aespire 授权问题漏洞 — Aestiva and Aespire 5.3 -2019-07-10
CVE-2019-11272 PlaintextPasswordEncoder authenticates encoded passwords that are null — Spring Security 7.7 -2019-06-26
CVE-2019-10150 Red Hat OpenShift Container Platform授权问题漏洞 — atomic-openshift 5.9 -2019-06-12
CVE-2019-6814 Schneider Electric NET55XX Encoder 授权问题漏洞 — ÊNET55XX Encoder with firmware prior to version 2.1.9.Ê 9.8 -2019-05-22
CVE-2019-1867 Cisco Elastic Services Controller REST API Authentication Bypass Vulnerability — Cisco Elastic Services Controller 10.0 -2019-05-10
CVE-2019-1724 Cisco Small Business RV320 and RV325 Routers Session Hijacking Vulnerability — Cisco Small Business RV Series Router Firmware 8.8 -2019-05-03
CVE-2018-16877 Pacemaker 授权问题漏洞 — pacemaker 7.8 -2019-04-18
CVE-2018-0382 Cisco Wireless LAN Controller Software Session Hijacking Vulnerability — Cisco Wireless LAN Controller (WLC) 7.5 -2019-04-17
CVE-2018-7340 Multiple SAML libraries may allow authentication bypass via incorrect XML canonicalization and DOM traversal — Duo Network Gateway 7.5 -2019-04-17
CVE-2017-11430 Multiple SAML libraries may allow authentication bypass via incorrect XML canonicalization and DOM traversal — OmnitAuth-SAML 9.1 -2019-04-17
CVE-2017-11429 Multiple SAML libraries may allow authentication bypass via incorrect XML canonicalization and DOM traversal — saml2-js 9.8 -2019-04-17
CVE-2017-11428 Multiple SAML libraries may allow authentication bypass via incorrect XML canonicalization and DOM traversal — Ruby-SAML 9.8 -2019-04-17
CVE-2017-11427 Multiple SAML libraries may allow authentication bypass via incorrect XML canonicalization and DOM traversal — PythonSAML 9.8 -2019-04-17
CVE-2019-3798 Escalation of Privileges in Cloud Controller — CAPI-release 7.5 -2019-04-17
CVE-2019-5426 Ubiquiti Networks EdgeSwitch X 授权问题漏洞 — EdgeMAX 7.4 -2019-04-10
CVE-2017-6047 Detcon SiteWatch Gateway 信任管理问题漏洞 — Sitewatch Gateway 9.8 -2019-04-02
CVE-2019-1758 Cisco IOS Software Catalyst 6500 Series 802.1x Authentication Bypass Vulnerability — Cisco IOS Software 4.3 -2019-03-28
CVE-2019-1662 Cisco Prime Collaboration Assurance Software Unauthenticated Access Vulnerability — Cisco Prime Collaboration Assurance 9.8 -2019-02-21
CVE-2019-6527 Kunbus PR100088 Modbus 授权问题漏洞 — PR100088 Modbus gateway 9.8 -2019-02-12

Vulnerabilities classified as CWE-287 (认证机制不恰当) represent 1203 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.