Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:9 p.m.9 views

CVE-2021-38299

Webauthn Framework 3.3.x before 3.3.4 has Incorrect Access Control. An attacker that controls a user's system is able to login to a vulnerable service using an attached FIDO2 authenticator without passing a check of the user presence...

9.8CVSS6.8AI score0.01743EPSS
Exploits0References1
OSV
OSV
added 2021/09/29 5:16 p.m.19 views

GHSA-6WHF-Q6P5-84WG Improper Access Control in Webauthn Framework

Webauthn Framework 3.3.x before 3.3.4 has Incorrect Access Control. An attacker that controls a user's system is able to login to a vulnerable service using an attached FIDO2 authenticator without passing a check of the user presence...

9.8CVSS9.3AI score0.01743EPSS
Exploits0References6
NVD
NVD
added 2021/09/27 6:15 a.m.28 views

CVE-2021-38299

Webauthn Framework 3.3.x before 3.3.4 has Incorrect Access Control. An attacker that controls a user's system is able to login to a vulnerable service using an attached FIDO2 authenticator without passing a check of the user presence...

9.8CVSS0.01743EPSS
Exploits0References2
Prion
Prion
added 2021/09/27 6:15 a.m.21 views

Design/Logic Flaw

Webauthn Framework 3.3.x before 3.3.4 has Incorrect Access Control. An attacker that controls a user's system is able to login to a vulnerable service using an attached FIDO2 authenticator without passing a check of the user presence...

7.5CVSS9.4AI score0.01743EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2021/09/27 12:0 a.m.7 views

Webauthn-Framework 授权问题漏洞

Webauthn-Framework is an authentication mechanism. It is used by Web applications to create and use strong, proven, scoped, public-key based credentials for strong authentication of users. Webauthn-Framework suffers from a security vulnerability that allows an attacker in control of a user's syst...

9.8CVSS8.3AI score0.01743EPSS
Exploits0References3
Rows per page
Query Builder