4 matches found
CVE-2025-2230
A flaw exists in the Windows login flow where an AuthContext token can be exploited for replay attacks and authentication bypass...
CVE-2025-2230 Philips Intellispace Cardiovascular (ISCV) Improper Authentication
A flaw exists in the Windows login flow where an AuthContext token can be exploited for replay attacks and authentication bypass...
CVE-2025-2230 Philips Intellispace Cardiovascular (ISCV) Improper Authentication
A flaw exists in the Windows login flow where an AuthContext token can be exploited for replay attacks and authentication bypass...
CVE-2025-2230
A CVE for Philips ISCV (CVE-2025-2230) describes a Windows logon flow flaw where an AuthContext token can be replayed to bypass authentication. The token is generated from the username, current timestamp, and a fixed AES-128 key shared across installations, enabling high-impact confidentiality an...