2 matches found
CVE-2022-40494
NPS before v0.26.10 was discovered to contain an authentication bypass vulnerability via constantly generating and sending the Auth key and Timestamp parameters...
CVE-2022-40494
The CVE-2022-40494 issue affects NPS prior to version 0.26.10, where authentication can be bypassed by continuously generating and sending the Auth key and Timestamp parameters. The root cause is an authentication flow weakness that accepts malformed or repetitive Auth key/Timestamp inputs, enabl...