Lucene search
K

18 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:42 a.m.9 views

CVE-2022-31011

TiDB is an open-source NewSQL database that supports Hybrid Transactional and Analytical Processing HTAP workloads. Under certain conditions, an attacker can construct malicious authentication requests to bypass the authentication process, resulting in privilege escalation or unauthorized access...

7.8CVSS7.1AI score0.00311EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-7594

Malware in sbrugna...

9.4CVSS9.4AI score0.02737EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2008-2343

Malware in sbrugna...

7.5CVSS6.4AI score0.02561EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-14457

Malware in sbrugna...

9.8CVSS9.2AI score0.01056EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-6000

Malware in sbrugna...

5.8CVSS7.4AI score0.01457EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-6080

Malware in sbrugna...

8.8CVSS8.6AI score0.02697EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-36101

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00285EPSS
Exploits0References1
NVD
NVD
added 2025/07/25 2:15 p.m.4 views

CVE-2025-45777

An issue in the OTP mechanism of Chavara Family Welfare Centre Chavara Matrimony Site v2.0 allows attackers to bypass authentication via supplying a crafted request...

9.8CVSS0.00698EPSS
Exploits1References2
Zero Day Initiative
Zero Day Initiative
added 2025/06/11 12:0 a.m.9 views

(Pwn2Own) Sony XAV-AX8500 Bluetooth Improper Isolation Authentication Bypass Vulnerability

This vulnerability allows network-adjacent attackers to bypass authentication on affected Sony XAV-AX8500 devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of ACL-U links. The issue results from the lack of L2CAP channel...

6.3CVSS7.1AI score0.00311EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/06 6:53 p.m.9 views

CVE-2025-2766 70mai A510 Use of Default Password Authentication Bypass Vulnerability

70mai A510 Use of Default Password Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of 70mai A510. Authentication is not required to exploit this vulnerability. The specific flaw exists within the default...

8.8CVSS0.003EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:0 a.m.3 views

CVE-2024-36457

The vulnerability allows an attacker to bypass the authentication requirements for a specific PAM endpoint...

5.3CVSS7.4AI score0.00285EPSS
Exploits0References1
CNVD
CNVD
added 2025/03/27 12:0 a.m.5 views

ChuanhuChatGPT Security Bypass Vulnerability

ChuanhuChatGPT is an application that provides a lightweight and easy-to-use web GUI and many additional features for a wide range of LLMs such as ChatGPT. ChuanhuChatGPT suffers from a security bypass vulnerability that originates when a username is provided via a client-side HTTP request, which...

8.1CVSS7AI score0.00581EPSS
Exploits1References1
OSV
OSV
added 2024/08/23 4:15 p.m.3 views

CVE-2024-43032

autMan v2.9.6 allows attackers to bypass authentication via a crafted web request...

4.3CVSS7.2AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/07 2:17 p.m.15 views

CVE-2024-36787

An issue in Netgear WNR614 JNR1010V2 N300-V1.1.0.541.0.1 allows attackers to bypass authentication and access the administrative interface via unspecified vectors...

7.4AI score0.00571EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/03/29 12:0 a.m.10 views

CVE-2022-36979

This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

7.5CVSS9.8AI score0.06534EPSS
Exploits0References2
NVD
NVD
added 2022/02/18 8:15 p.m.12 views

CVE-2022-24047

This vulnerability allows remote attackers to bypass authentication on affected installations of BMC Track-It! 20.21.01.102. Authentication is not required to exploit this vulnerability. The specific flaw exists within the authorization of HTTP requests. The issue results from the lack of...

9.8CVSS0.01866EPSS
Exploits0References2
NVD
NVD
added 2005/08/17 4:0 a.m.15 views

CVE-2005-2605

Unknown vulnerability in Lasso Professional Server8.0.4 and 8.0.5 allows attackers to bypass authentication, related to Auth tags...

6.4CVSS6.5AI score0.01262EPSS
Exploits0References3
NVD
NVD
added 2004/12/06 5:0 a.m.21 views

CVE-2004-0627

The checkscramble323 function in MySQL 4.1.x before 4.1.3, and 5.0, allows remote attackers to bypass authentication via a zero-length scrambled string...

10CVSS6.7AI score0.69647EPSS
Exploits1References3
Rows per page
Query Builder