CWE-592 - Authentication Bypass Issues

Description

The software inability to check the correctness of authentication exposes malicious users possibilities to bypass through it using all possible ways and methods.
The vulnerability is introduced during Architecture and Design, Implementation, Operation stages.

Latest vulnerabilities for CWE-592

Multiple vulnerabilities in HPE Integrated Lights-out 4 (iLO 4), Moonshot, and NonStop Systems 2023-03-24
High Yes

Multiple vulnerabilities in Dell EMC XtremIO 2022-11-01
Medium Yes

Multiple vulnerabilities in DELL Secure Connect Gateway Security 2022-07-28
Critical Yes

Multiple vulnerabilities in Oracle Retail Invoice Matching 2021-01-20
Medium Yes

Hitachi ABB Power Grids FOX615 Multiservice-Multiplexer update for libssh library 2021-01-08
Low Yes

Multiple vulnerabilities in Tenable.sc 2019-12-31
Medium Yes

Multiple vulnerabilities in SAP products 2019-02-12
High Yes

Authentication bypass in Dovecot 2019-02-05
Medium Yes

Multiple vulnerabilities in AVEVA Wonderware System Platform 2019-01-30
Low Yes

Authentication bypass in Emerson DeltaV 2019-01-11
Medium Yes

References

Description of CWE-592 on Mitre website