Fallos del tipo CWE-305
147 resultadosCVE-2020-14359—A vulnerability was found in all versions of Keycloak Gatekeeper, where on using lower case HTTP headers (via cURL) an attacker can bypass oEPSS 0.9%CVE-2023-34137—SonicWall GMS and Analytics CAS Web Services application use static values for authentication without proper checks leading to authenticatioEPSS 0.9%CVE-2023-20154CRITICALCisco Modeling Labs External Authentication Bypass VulnerabilityEPSS 0.9%CVE-2024-1202CRITICALAuthentication Bypass in XPodas' OctopodEPSS 0.9%CVE-2024-20378HIGHA vulnerability in the web-based management interface of Cisco IP Phone firmware could allow an unauthenticated, remote attacker to retrieveEPSS 0.8%CVE-2024-3847CRITICALInsufficient policy enforcement in WebUI in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to bypass content security policyEPSS 0.8%CVE-2023-1833CRITICALAuthentication Bypass in Redline RouterEPSS 0.8%CVE-2025-46801CRITICALPgpool-II provided by PgPool Global Development Group contains an authentication bypass by primary weakness vulnerability. if the vulnerabilEPSS 0.8%CVE-2021-45031HIGHWeak Authentication in Login Function of USC+EPSS 0.8%CVE-2021-28503HIGHIn Arista's EOS software affected releases, eAPI might skip re-evaluating user credentials when certificate based authentication is used, which allows remote attackers to access the device via eAPI.EPSS 0.7%CVE-2025-24522CRITICALKUNBUS Revolution Pi Authentication Bypass by Primary WeaknessEPSS 0.7%CVE-2026-22153HIGHAn Authentication Bypass by Primary Weakness vulnerability [CWE-305] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4 may allow an unauEPSS 0.7%CVE-2023-6153CRITICALAuthentication Bypass in TeoSOFT Software TeoBASEEPSS 0.7%CVE-2023-4727HIGHCa: token authentication bypass vulnerabilityEPSS 0.7%CVE-2025-56132HIGHLiquidFiles filetransfer server is vulnerable to a user enumeration issue in its password reset functionality. The application returns distiEPSS 0.6%CVE-2023-7103CRITICALAuthentication Bypass in ZKSoftware's UFace 5EPSS 0.6%CVE-2024-39899MEDIUMPrivateBin allows shortening of URLs for other domainsEPSS 0.6%CVE-2023-4501CRITICALAuthentication bypass in OpenText (Micro Focus) Enterprise ServerEPSS 0.6%CVE-2024-12776HIGHAuthentication Bypass in langgenius/difyEPSS 0.6%CVE-2025-58382HIGHPrivilege escalation in Brocade Fabric before 9.2.1c2 and 9.2.2 through 9.2.2aEPSS 0.6%