Lucene search
K

14 matches found

EUVD
EUVD
added 2026/06/05 12:31 a.m.9 views

EUVD-2026-34333

Authentication bypass by spoofing in Azure HorizonDB allows an unauthorized attacker to elevate privileges over a network...

10CVSS5.8AI score0.00973EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/03 4:6 p.m.6 views

CVE-2026-21862

RustFS is a distributed object storage system built in Rust. Prior to version alpha.78, IP-based access control can be bypassed: getconditionvalues trusts client-supplied X-Forwarded-For/X-Real-Ip without verifying a trusted proxy, so any reachable client can spoof aws:SourceIp and satisfy...

8.7CVSS5.3AI score0.00211EPSS
Exploits0References2
OSV
OSV
added 2025/06/25 4:46 p.m.6 views

CVE-2025-52576 Kanboard vulnerable to Username Enumeration via Login Behavior and Bruteforce Protection Bypass

Kanboard is project management software that focuses on the Kanban methodology. Prior to version 1.2.46, Kanboard is vulnerable to username enumeration and IP spoofing-based brute-force protection bypass. By analyzing login behavior and abusing trusted HTTP headers, an attacker can determine vali...

5.3CVSS6.6AI score0.00299EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2024/07/23 12:0 a.m.5 views

The vulnerability of Siemens SCALANCE industrial switches, related to the ability to bypass authentication through spoofing, allows attackers to enhance their privileges.

The vulnerability of Siemens SCALANCE industrial switches relates to the ability to bypass authentication through spoofing. Exploiting this vulnerability can allow a malicious actor to gain increased privileges...

8.4CVSS5.5AI score0.00234EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/02/08 12:0 a.m.5 views

Snow Software Inventory Agent Security Vulnerability

Snow Software Inventory Agent is an agent program from Snow Software, a Swedish company. A security vulnerability exists in Snow Software Inventory Agent that stems from a Spoofing Bypass Authentication vulnerability that allows signature spoofing...

6CVSS6.8AI score0.00161EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/07/05 12:0 a.m.5 views

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a security vulnerability that stems from an authentication bypass via spoofing vulnerability in the Gallery module. An attacker...

9.8CVSS8.4AI score0.00385EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/06/13 12:0 a.m.3 views

PandoraFMS 安全漏洞

PandoraFMS is an application from PandoraFMS USA. It provides a monitoring feature. A security vulnerability exists in PandoraFMS 771 and prior versions, which stems from a spoofing bypass authentication vulnerability during password reset...

9.8CVSS8.4AI score0.00618EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/11/21 12:0 a.m.40 views

CVE-2022-1579 Login Block IPs <= 1.0.0 - IP Spoofing Bypass

The function checkisloginpage uses headers for the IP check, which can be easily spoofed...

7.8AI score0.00664EPSS
Exploits2References1
OSV
OSV
added 2022/05/14 2:19 a.m.8 views

GHSA-QPWC-P365-PQRR OpenStack Neutron allows remote attackers to bypass an intended DHCP-spoofing protection mechanism

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended DHCP-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a crafted DHCP discovery message...

8.2CVSS6.5AI score0.03411EPSS
Exploits0References11
0day.today
0day.today
added 2020/05/29 12:0 a.m.73 views

Crystal Shard http-protection 0.2.0 - IP Spoofing Bypass Vulnerability

Exploit for multiple platform in category web applications Exploit Title : Crystal Shard http-protection 0.2.0 - IP Spoofing Bypass Exploit Author : Halis Duraki @0xduraki Product : http-protection Crystal Shard Product URI : https://github.com/rogeriozambon/http-protection Version :...

7.1AI score
Exploits0
OSV
OSV
added 2016/06/17 3:59 p.m.2 views

DEBIAN-CVE-2016-5362

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended DHCP-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a crafted DHCP discovery message...

8.2CVSS6.9AI score0.03411EPSS
Exploits0References1
OSV
OSV
added 2016/06/17 3:59 p.m.3 views

UBUNTU-CVE-2015-8914

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended ICMPv6-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a link-local source address...

9.1CVSS7AI score0.04248EPSS
Exploits1References2
Debian
Debian
added 2014/04/16 1:22 a.m.34 views

[SECURITY] [DSA 2905-1] chromium-browser security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2905-1 [email protected] http://www.debian.org/security/ Michael Gilbert April 15, 2014 http://www.debian.org/security/faq -...

7.5CVSS1.2AI score0.01934EPSS
Exploits10
myhack58
myhack58
added 2010/10/10 12:0 a.m.18 views

Feindura File Manager 1.0 remote upload vulnerability-vulnerability warning-the black bar safety net

Feindura file management system V1. 0 Upload only to verify the file header, resulting in the CAN by the file header spoofing bypasses the upload of any file. Test use: upload shell file the first row is added GIF81a http://www.chinasg.tk/path/library/thirdparty/filemanager/...

1.3AI score
Exploits0
Rows per page
Query Builder