Lucene search
China National Vulnerability DatabaseCNVD-2022-69161HistorySep 30, 2022 - 12:00 a.m.
Cisco Duo Licensing Issue Vulnerability
2022-09-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
cisco
duo
authorization
vulnerability
smart card
authentication
piv
bypass
EPSS
0.001
Percentile
25.7%
Cisco Duo is a fully managed solution from Cisco, Inc. Providing secure access to your applications and data, Cisco Duo suffers from an authorization issue vulnerability that stems from a failure to properly match the designated user of a smart card with the authenticated user, which can be exploited by an unauthenticated attacker with physical access to bypass authentication and can use any Personal Identity Verification (PIV) smart card for authentication.
Related
nessus
nessus
cve
cve
CVE-2022-20662
2022-09-30 19:15:10
cisco
cisco
Cisco Duo for macOS Authentication Bypass Vulnerability
2022-09-28 16:00:00
cvelist
cvelist
CVE-2022-20662 Cisco Duo for macOS Authentication Bypass Vulnerability
2022-09-30 18:45:12
nvd
nvd
CVE-2022-20662
2022-09-30 19:15:10
prion
prion
Authentication flaw
2022-09-30 19:15:00