Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Positive Technologies
Positive Technologiesadded 2026/05/29 12:0 a.m.6 views

PT-2026-45030

Impact CVSSv4 Baseline Score: Moderate 6.3 CVSSv4 Weighted Score: Low 2.9 The full CVSSv4 Vector for this vulnerability is:...

6.3CVSS5.9AI score
Exploits0References4
OSV
OSVadded 2025/03/05 6:17 p.m.1 views

DRUPAL-CONTRIB-2025-023

This module enables you to allow and/or require users to use a second authentication method in addition to password authentication. The module does not sufficiently ensure that known login routes are not overridden by third-party modules which can allow an access bypass to occur. This vulnerabili...

8.1CVSS7AI score0.00514EPSS
Exploits0References1
OSV
OSVadded 2023/08/11 6:15 a.m.1 views

CVE-2023-40260

EmpowerID before 7.205.0.1 allows an attacker to bypass an MFA multi factor authentication requirement if the first factor username and password is known, because the first factor is sufficient to change an account's email address, and the product would then send MFA codes to the new email addres...

9.1CVSS5.7AI score0.00054EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2023/08/11 12:0 a.m.2 views

PT-2023-27351 · Empowerid · Empowerid

Name of the Vulnerable Software and Affected Versions: EmpowerID versions prior to 7.205.0.1 Description: The issue allows an attacker to bypass a multi-factor authentication MFA requirement if the first factor, which includes the username and password, is known. This is possible because knowing...

9.1CVSS4.2AI score0.00054EPSS
Exploits0References5
OSV
OSVadded 2023/07/12 6:19 p.m.2 views

DRUPAL-CONTRIB-2023-030

This module enables you to allow and/or require users to use a second authentication method in addition to password authentication. The module doesn't sufficiently ensure all core login routes, including the password reset page, require a second factor credential. This vulnerability is mitigated ...

7.1AI score
Exploits0References1
CNNVD
CNNVDadded 2021/12/20 12:0 a.m.2 views

Vmware Workspace One Access 授权问题漏洞

Vmware Workspace One Access is Vmware USA's combines user identity with factors such as device and network information to make intelligence-driven conditional access decisions for Workspace One delivered applications. An authorization issue vulnerability exists in VMware Workspace ONE Access...

8.8CVSS7.9AI score0.00498EPSS
Exploits0References5
OSV
OSVadded 2020/09/22 2:15 p.m.0 views

CVE-2020-3977

VMware Horizon DaaS 7.x and 8.x before 8.0.1 Update 1 contains a broken authentication vulnerability due to a flaw in the way it handled the first factor authentication. Successful exploitation of this issue may allow an attacker to bypass two-factor authentication process. In order to exploit th...

6.5CVSS6.6AI score
Exploits0References1
Rows per page
Query Builder