14 matches found
EUVD-2026-34333
Authentication bypass by spoofing in Azure HorizonDB allows an unauthorized attacker to elevate privileges over a network...
CVE-2026-21862
RustFS is a distributed object storage system built in Rust. Prior to version alpha.78, IP-based access control can be bypassed: getconditionvalues trusts client-supplied X-Forwarded-For/X-Real-Ip without verifying a trusted proxy, so any reachable client can spoof aws:SourceIp and satisfy...
CVE-2025-52576 Kanboard vulnerable to Username Enumeration via Login Behavior and Bruteforce Protection Bypass
Kanboard is project management software that focuses on the Kanban methodology. Prior to version 1.2.46, Kanboard is vulnerable to username enumeration and IP spoofing-based brute-force protection bypass. By analyzing login behavior and abusing trusted HTTP headers, an attacker can determine vali...
The vulnerability of Siemens SCALANCE industrial switches, related to the ability to bypass authentication through spoofing, allows attackers to enhance their privileges.
The vulnerability of Siemens SCALANCE industrial switches relates to the ability to bypass authentication through spoofing. Exploiting this vulnerability can allow a malicious actor to gain increased privileges...
Snow Software Inventory Agent Security Vulnerability
Snow Software Inventory Agent is an agent program from Snow Software, a Swedish company. A security vulnerability exists in Snow Software Inventory Agent that stems from a Spoofing Bypass Authentication vulnerability that allows signature spoofing...
Huawei HarmonyOS 安全漏洞
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a security vulnerability that stems from an authentication bypass via spoofing vulnerability in the Gallery module. An attacker...
PandoraFMS 安全漏洞
PandoraFMS is an application from PandoraFMS USA. It provides a monitoring feature. A security vulnerability exists in PandoraFMS 771 and prior versions, which stems from a spoofing bypass authentication vulnerability during password reset...
CVE-2022-1579 Login Block IPs <= 1.0.0 - IP Spoofing Bypass
The function checkisloginpage uses headers for the IP check, which can be easily spoofed...
GHSA-QPWC-P365-PQRR OpenStack Neutron allows remote attackers to bypass an intended DHCP-spoofing protection mechanism
The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended DHCP-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a crafted DHCP discovery message...
Crystal Shard http-protection 0.2.0 - IP Spoofing Bypass Vulnerability
Exploit for multiple platform in category web applications Exploit Title : Crystal Shard http-protection 0.2.0 - IP Spoofing Bypass Exploit Author : Halis Duraki @0xduraki Product : http-protection Crystal Shard Product URI : https://github.com/rogeriozambon/http-protection Version :...
DEBIAN-CVE-2016-5362
The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended DHCP-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a crafted DHCP discovery message...
UBUNTU-CVE-2015-8914
The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended ICMPv6-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a link-local source address...
[SECURITY] [DSA 2905-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2905-1 [email protected] http://www.debian.org/security/ Michael Gilbert April 15, 2014 http://www.debian.org/security/faq -...
Feindura File Manager 1.0 remote upload vulnerability-vulnerability warning-the black bar safety net
Feindura file management system V1. 0 Upload only to verify the file header, resulting in the CAN by the file header spoofing bypasses the upload of any file. Test use: upload shell file the first row is added GIF81a http://www.chinasg.tk/path/library/thirdparty/filemanager/...