Fallos del tipo CWE-289
29 resultadosCVE-2024-56511CRITICALDataEase has an unauthorized vulnerabilityEPSS 20.9%CVE-2021-34746CRITICALCisco Enterprise NFV Infrastructure Software Authentication Bypass VulnerabilityEPSS 17.7%CVE-2017-16590—This vulnerability allows remote attackers to bypass authentication on vulnerable installations of NetGain Systems Enterprise Manager 7.2.69EPSS 3.4%CVE-2023-20046HIGHA vulnerability in the key-based SSH authentication feature of Cisco StarOS Software could allow an authenticated, remote attacker to elevatEPSS 0.9%CVE-2023-1803CRITICALAuthentication Bypass in Redline RouterEPSS 0.8%CVE-2023-38487MEDIUMHedgeDoc API allows to hide existing notesEPSS 0.7%CVE-2023-3263HIGHThe Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier is vulnerable to authentication bypass in the REST API due to the EPSS 0.6%CVE-2024-51996HIGHSymphony has an Authentication Bypass via RememberMeEPSS 0.6%CVE-2023-41890HIGHSustainsys.Saml2 Insufficient Identity Provider Issuer ValidationEPSS 0.6%CVE-2026-24058HIGHSoft Serve has Critical Authentication BypassEPSS 0.5%CVE-2025-55130HIGHA flaw in Node.js’s Permissions model allows attackers to bypass `--allow-fs-read` and `--allow-fs-write` restrictions using crafted relativEPSS 0.5%CVE-2024-2098HIGHDownload Manager <= 3.2.89 - Improper Authorization via protectMediaLibraryEPSS 0.5%CVE-2026-3184LOWUtil-linux: util-linux: access control bypass due to improper hostname canonicalizationEPSS 0.4%CVE-2026-32036HIGHOpenClaw < 2026.2.26- Authentication Bypass via Encoded Dot-Segment Traversal in /api/channelsEPSS 0.4%CVE-2025-41248HIGHCVE-2025-41248: Spring Security authorization bypass for method security annotations on parameterized typesEPSS 0.4%CVE-2025-13613CRITICALElated Membership <= 1.2 - Authentication Bypass via Social LoginEPSS 0.4%CVE-2024-11283HIGHWP JobHunt <= 7.1 - Authentication Bypass to CandidateEPSS 0.4%CVE-2024-55634HIGHDrupal core - Moderately critical - Access bypass - SA-CORE-2024-004EPSS 0.4%CVE-2026-50627CRITICALApache CXF: OAuth2: Missing JWT Audience and Issuer Validation in Access Token ValidatorEPSS 0.4%CVE-2025-29266CRITICALUnraid 7.0.0 before 7.0.1 allows remote users to access the Unraid WebGUI and web console as root without authentication if a container is rEPSS 0.4%