Description
The product uses an authentication mechanism to restrict access to specific users or identities, but the mechanism does not sufficiently prove that the claimed identity is correct.
CVE vulnerabilities with CWE-1390 (82)
10.0
CVSS
CRITICAL
CVE-2025-30411
pub. 2026-02-20
10.0
CVSS
CRITICAL
CVE-2025-30412
pub. 2026-02-20
9.8
CVSS
CRITICAL
CVE-2026-6274
pub. 2026-06-05
9.8
CVSS
CRITICAL
CVE-2026-28710
pub. 2026-03-06
9.8
CVSS
CRITICAL
CVE-2025-40552
pub. 2026-01-28
9.8
CVSS
CRITICAL
CVE-2025-40554
pub. 2026-01-28
9.8
CVSS
CRITICAL
CVE-2025-63807
pub. 2025-11-20
9.8
CVSS
CRITICAL
CVE-2025-39596
pub. 2025-04-17
9.8
CVSS
CRITICAL
CVE-2025-1387
pub. 2025-02-17
9.8
CVSS
CRITICAL
CVE-2024-13239
pub. 2025-01-09
9.8
CVSS
CRITICAL
CVE-2023-49340
pub. 2024-03-09
9.8
CVSS
CRITICAL
CVE-2022-43400
pub. 2022-10-21
9.3
CVSS
CRITICAL
CVE-2026-6886
pub. 2026-04-23
9.3
CVSS
CRITICAL
CVE-2023-53894
pub. 2025-12-16
9.3
CVSS
CRITICAL
CVE-2025-12870
pub. 2025-11-12
9.3
CVSS
CRITICAL
CVE-2025-12871
pub. 2025-11-12
9.3
CVSS
CRITICAL
CVE-2024-54092
pub. 2025-04-08
9.3
CVSS
CRITICAL
CVE-2024-45367
pub. 2024-10-03
9.1
CVSS
CRITICAL
CVE-2026-27478
pub. 2026-03-11
9.1
CVSS
CRITICAL
CVE-2024-39848
pub. 2024-06-29
Showing 20 of 82 vulnerabilities