The vulnerability of Microsoft Exchange Server’s mail server, related to deficiencies in authentication procedures, allows attackers to escalate their privileges.

The vulnerability of Microsoft Exchange Server is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow attackers to increase their privileges remotely...

The vulnerability of the Link Handler component in the Mozilla Firefox browser allows a hacker to circumvent existing security restrictions.

The vulnerability of the Link Handler component in the Mozilla Firefox browser is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions remotely...

The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and the Microsoft SharePoint Foundation software for electronic document management lies in authentication procedures that allow attackers to carry out spoofing attacks.

The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and the Microsoft SharePoint Foundation software relates to deficiencies in authentication procedures. Exploiting this vulnerability can allow attackers to carry out spear-phishing attacks remotely...

The vulnerabilities of HashiCorp’s Vault and Vault Enterprise storage platforms, related to authentication mechanisms’ deficiencies, allow attackers to trigger service interruptions.

The vulnerability of the HashiCorp Vault and Vault Enterprise archiving platforms relates to deficiencies in the authentication mechanism. Exploiting this vulnerability could allow an attacker to cause service interruptions...

The vulnerability of the virtual learning environment Moodle, related to deficiencies in authentication mechanisms, allows a intruder to gain unauthorized access to user data.

The vulnerability of the virtual learning environment Moodle is related to deficiencies in the authentication mechanism. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to user data...

PT-2025-18987 · Undefined · Undefined

Уязвимость операционных систем Fortinet FortiOS связана с недостатками механизма аутентификации. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, раскрыть данные о конфигурации устройства и обойти существующие механизмы безопасности...

The vulnerability of Active Directory Certificate Services on Windows operating systems allows attackers to increase their privileges.

The vulnerability of Active Directory Certificate Services on Windows operating systems is related to deficiencies in the authentication process. Exploiting this vulnerability can allow an attacker to gain increased privileges remotely...

The vulnerability of microprogrammed multifunctional devices (MFUs) such as Versalink, Phaser, and WorkCentre, related to deficiencies in authentication procedures, allows attackers to disclose protected information.

The vulnerability of microprogrammed multifunctional devices such as Versalink, Phaser, and WorkCentre is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow an attacker, operating remotely, to disclose protected information...

The vulnerability of the Two-factor Authentication (TFA) module in the Drupal CMS system, related to deficiencies in authentication procedures, allows attackers to circumvent security restrictions.

The vulnerability of the Two-factor Authentication TFA module in the Drupal CMS system is related to deficiencies in the authentication process. Exploiting this vulnerability could allow attackers to bypass security restrictions remotely...

The vulnerability of the Next.js software platform for creating web applications stems from deficiencies in the authentication process, which allows attackers to circumvent security restrictions.

The vulnerability of the Next.js software platform for creating web applications is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass security restrictions remotely...

The vulnerability of cloud-based software for creating and using Nextcloud Server and Nextcloud Enterprise Server lies in the authentication procedures’ deficiencies, which allow attackers to disclose protected information.

The vulnerability of cloud-based software for creating and using Nextcloud Server and Nextcloud Enterprise Server is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose protected information...

The vulnerability of the Brocade Fabric OS operating system, related to deficiencies in authentication procedures, allows a perpetrator to intercept service sessions.

The vulnerability of the Brocade Fabric OS operating system is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to intercept service sessions remotely...

The vulnerability of the corporate version of the GitHub Enterprise Server, related to deficiencies in authentication procedures, allows a violator to access confidential data.

The vulnerability of the corporate version of the GitHub Enterprise Server is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a perpetrator to access confidential data...

The vulnerability of the Red Hat 3scale API Management software, related to deficiencies in authentication mechanisms, allows attackers to circumvent existing security restrictions.

The vulnerability of the Red Hat 3scale API Management software lies in the deficiencies of its authentication mechanism. Exploiting this vulnerability could allow an attacker to circumvent existing security restrictions...

The vulnerability of the Netlogon service in Windows operating systems allows attackers to escalate their privileges.

The vulnerability of the Netlogon service in Windows operating systems is related to deficiencies in the authentication process. Exploiting this vulnerability can allow a malicious actor to gain increased privileges remotely...

The vulnerability in the Firefox web browser, related to vulnerabilities in the authentication process, allows attackers to compromise data integrity.

The vulnerability in the Firefox web browser is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to compromise data integrity remotely...

The vulnerability of the industrial server for serial devices of Korenix JetPort, related to deficiencies in authentication procedures, allows attackers to circumvent existing security restrictions.

The vulnerability of the industrial server for serial devices of Korenix JetPort is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions remotely...

The configuration of the JetBrains Space module “Project Settings” exposes vulnerabilities. This vulnerability relates to the connections in the system for continuous integration and delivery of applications (CI/CD). The JetBrains TeamCity allows attackers to gain unauthorized access to protected information.

The vulnerability of the JetBrains Space module’s Project Settings | Connections system for continuous integration and delivery of applications is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain...

The vulnerability of the One-Time Password function in Securepoint Unified Threat Management (UTM) software allows a perpetrator to bypass the two-factor authentication process.

The vulnerability of the One-Time Password function in Securepoint Unified Threat Management UTM software-related microprogramming systems is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor to bypass two-factor authentication...

The vulnerability of the HTTP Request Handler component in FortiWeb network appliances allows attackers to enhance their privileges.

The vulnerability of the HTTP Request Handler component in FortiWeb web applications is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow a malicious actor to gain increased privileges remotely...