Lucene search
K

477 matches found

NVD
NVD
added 2026/04/03 11:17 p.m.10 views

CVE-2017-20235

ProSoft Technology ICX35-HWC version 1.3 and prior cellular gateways contain an authentication bypass vulnerability in the web user interface that allows unauthenticated attackers to gain access to administrative functions without valid credentials. Attackers can bypass the authentication mechani...

9.8CVSS0.00451EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/01 12:0 a.m.6 views

Docker Model Runner 代码问题漏洞

Docker Model Runner is an open-source Docker model runner developed by Docker. Versions of Docker Model Runner prior to 1.1.25 contained code vulnerabilities. These vulnerabilities stemmed from a server-side request forgeing attack during the OCI registry token exchange process. When pulling...

9.1CVSS6AI score0.00253EPSS
Exploits0References1
NVD
NVD
added 2026/03/30 9:17 p.m.4 views

CVE-2026-32696

NanoMQ MQTT Broker NanoMQ is an all-around Edge Messaging Platform. In NanoMQ version 0.24.6, after enabling auth.httpauth HTTP authentication, when a client connects to the broker using MQTT CONNECT without providing username/password, and the configuration params uses the placeholders %u / %P...

7.5CVSS0.00399EPSS
Exploits1References4
EUVD
EUVD
added 2026/03/30 8:11 p.m.5 views

EUVD-2026-17209

NanoMQ MQTT Broker NanoMQ is an all-around Edge Messaging Platform. In NanoMQ version 0.24.6, after enabling auth.httpauth HTTP authentication, when a client connects to the broker using MQTT CONNECT without providing username/password, and the configuration params uses the placeholders %u / %P...

3.1CVSS5.8AI score0.00399EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/03/30 8:11 p.m.6 views

CVE-2026-32696 NanoMQ HTTP Auth: Missing username/password can trigger a NULL-pointer strlen() in auth_http.c:set_data(), causing a process crash — SIGSEGV, remotely triggerable

NanoMQ MQTT Broker NanoMQ is an all-around Edge Messaging Platform. In NanoMQ version 0.24.6, after enabling auth.httpauth HTTP authentication, when a client connects to the broker using MQTT CONNECT without providing username/password, and the configuration params uses the placeholders %u / %P...

3.1CVSS5.8AI score0.00399EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/03/30 12:0 a.m.8 views

NanoMQ 代码问题漏洞

NanoMQ is an open-source IoT edge platform broker developed by EMQ in the United States. Version 0.24.6 of NanoMQ contains a code vulnerability. This vulnerability arises when HTTP authentication is enabled, and placeholders like "%u%" or "%P%" are used during client connections. This can lead to...

7.5CVSS5.9AI score0.00399EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2026/03/27 10:30 p.m.11 views

OpenClaw: Gateway Plugin HTTP Auth Grants Unrestricted operator.admin Runtime Scope to All Callers

Summary Gateway Plugin HTTP auth: "gateway" Mints operator.admin Runtime Scope Affected Packages / Versions - Package: openclaw - Affected versions: = 2026.3.24 - First patched version: 2026.3.25 - Latest published npm version at verification time: 2026.3.24 Details Gateway-authenticated plugin...

8.8CVSS5.9AI score0.00298EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/26 5:0 p.m.5 views

CVE-2026-2745

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 7.11 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that could have allowed an unauthenticated user to bypass WebAuthn two-factor authentication and gain unauthorized access to user accounts due to inconsisten...

8.1CVSS5.8AI score0.00276EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:13 p.m.5 views

CVE-2025-13910

The WP-WebAuthn plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting via the wwaauth AJAX endpoint in all versions up to, and including, 1.3.4 due to insufficient input sanitization and output escaping on user supplied attributes logged by the plugin. This makes it...

6.1CVSS6AI score0.00265EPSS
Exploits0References1
NVD
NVD
added 2026/03/23 8:16 p.m.8 views

CVE-2026-32879

New API is a large language mode LLM gateway and artificial intelligence AI asset management system. Starting in version 0.10.0, a logic flaw in the universal secure verification flow allows an authenticated user with a registered passkey to satisfy secure verification without completing a WebAut...

4.9CVSS0.00289EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/03/23 7:56 p.m.18 views

New API has passkey-based secure step-up verification bypass for root-only channel secret disclosure

Summary A logic flaw in the universal secure verification flow allows an authenticated user with a registered passkey to satisfy secure verification without completing a WebAuthn assertion. Affected versions = v0.10.0 Description The POST /api/verify endpoint supports multiple secure verification...

4.9CVSS5.7AI score0.00289EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/23 7:24 p.m.13 views

CVE-2026-32879

New API is a large language mode LLM gateway and artificial intelligence AI asset management system. Starting in version 0.10.0, a logic flaw in the universal secure verification flow allows an authenticated user with a registered passkey to satisfy secure verification without completing a WebAut...

4.9CVSS5.8AI score0.00289EPSS
Exploits0References2Affected Software1
RustSec
RustSec
added 2026/03/11 12:0 p.m.11 views

`Authorization::value` and `WwwAuthenticate::value` can violate ASCII invariants

Authorization::value uses HeaderValue::value with the claim that the internal string is ASCII, but Authorization::new and Authorization::setcredentials accept arbitrary String credentials without validation. As a result, safe code can construct a header value containing non-ASCII UTF-8 while the...

5.7AI score
Exploits0
NVD
NVD
added 2026/03/10 6:18 p.m.6 views

CVE-2026-30964

web-auth/webauthn-lib is an open source set of PHP libraries and a Symfony bundle to allow developers to integrate that authentication mechanism into their web applications. Prior to 5.2.4, when allowedorigins is configured, CheckAllowedOrigins reduces URL-like values to their host component and...

5.4CVSS0.00197EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/10 5:16 p.m.5 views

CVE-2026-30964

web-auth/webauthn-lib is an open source set of PHP libraries and a Symfony bundle to allow developers to integrate that authentication mechanism into their web applications. Prior to 5.2.4, when allowedorigins is configured, CheckAllowedOrigins reduces URL-like values to their host component and...

5.4CVSS5.8AI score0.00197EPSS
Exploits1References4Affected Software3
Circl
Circl
added 2026/03/08 5:27 p.m.8 views

CVE-2026-30964

creationtimestamp| type| source ---|---|--- 2026-03-08 17:27:32+00:00| published-proof-of-concept| https://github.com/web-auth/webauthn-framework/security/advisories/GHSA-f7pm-6hr8-7ggm...

5.4CVSS5.8AI score0.00197EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/07 7:59 a.m.8 views

CVE-2026-28787

OneUptime is a solution for monitoring and managing online services. In version 10.0.11 and prior, the WebAuthn authentication implementation does not store the challenge on the server side. Instead, the challenge is returned to the client and accepted back from the client request body during...

9CVSS5.8AI score0.00276EPSS
Exploits1References1
NVD
NVD
added 2026/03/06 5:16 a.m.9 views

CVE-2026-28787

OneUptime is a solution for monitoring and managing online services. In version 10.0.11 and prior, the WebAuthn authentication implementation does not store the challenge on the server side. Instead, the challenge is returned to the client and accepted back from the client request body during...

9CVSS0.00276EPSS
Exploits1References1
CVE
CVE
added 2026/03/06 4:55 a.m.19 views

CVE-2026-28787

OneUptime CVE-2026-28787 affects versions 10.0.11 and earlier, where WebAuthn challenge data is not stored server-side. The server returns the generated challenge to the client and accepts the client-provided challenge during verification, violating WebAuthn and enabling replay of valid assertion...

9CVSS6AI score0.00276EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/06 4:55 a.m.4 views

CVE-2026-28787 OneUptime has WebAuthn 2FA bypass: server accepts client-supplied challenge instead of server-stored value, allowing credential replay

OneUptime is a solution for monitoring and managing online services. In version 10.0.11 and prior, the WebAuthn authentication implementation does not store the challenge on the server side. Instead, the challenge is returned to the client and accepted back from the client request body during...

8.2CVSS5.8AI score0.00276EPSS
Exploits1References1
Rows per page
Query Builder