Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
authenticator vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-1991
Multiple untrusted search path vulnerabilities in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allow local users to gain privileges via a Trojan horse DLL in the current working d...
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008 -
Microsoft Windows Xp -
Microsoft Windows 7 -
Microsoft Windows Xp
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 2003 Server
6.5
CVSSv3
CVE-2023-21994
Vulnerability in the Oracle Mobile Security Suite product of Oracle Fusion Middleware (component: Android Mobile Authenticator App). Supported versions that are affected are before 11.1.2.3.1. Easily exploitable vulnerability allows unauthenticated attacker with access to the phy...
Oracle Fusion Middleware
7.5
CVSSv3
CVE-2022-39387
XWiki OIDC has various tools to manipulate OpenID Connect protocol in XWiki. Prior to version 1.29.1, even if a wiki has an OpenID provider configured through its xwiki.properties, it is possible to provide a third party provider its details through request parameters. One can th...
Xwiki Openid Connect
NA
CVE-2014-8609
The addAccount method in src/com/android/settings/accounts/AddAccountSettings.java in the Settings application in Android prior to 5.0.0 does not properly create a PendingIntent, which allows malicious users to use the SYSTEM uid for broadcasting an intent with arbitrary componen...
Google Android 4.4
Google Android 4.4.1
Google Android 4.4.2
Google Android 4.4.3
Google Android 4.0
Google Android 4.0.2
Google Android 4.2.2
Google Android 4.3.1
Google Android
Google Android 4.0.4
Google Android 4.1
Google Android 4.1.2
Google Android 4.2
Google Android 4.0.1
Google Android 4.0.3
Google Android 4.2.1
Google Android 4.3
4 Github repositories
6.5
CVSSv3
CVE-2021-0215
On Juniper Networks Junos EX series, QFX Series, MX Series and SRX branch series devices, a memory leak occurs every time the 802.1X authenticator port interface flaps which can lead to other processes, such as the pfex process, responsible for packet forwarding, to crash and res...
Juniper Junos 15.1x49
Juniper Junos 15.1x53
Juniper Junos 14.1x53
Juniper Junos 16.1
Juniper Junos 17.2
Juniper Junos 17.3
Juniper Junos 17.4
Juniper Junos 18.1
Juniper Junos 18.2
Juniper Junos 18.3
Juniper Junos 18.4
Juniper Junos 19.1
Juniper Junos 19.2
Juniper Junos 19.3
Juniper Junos 19.4
7.5
CVSSv3
CVE-2021-32701
ORY Oathkeeper is an Identity & Access Proxy (IAP) and Access Control Decision API that authorizes HTTP requests based on sets of Access Rules. When you make a request to an endpoint that requires the scope `foo` using an access token granted with that `foo` scope, introspect...
Ory Oathkeeper 0.38.0
Ory Oathkeeper 0.38.1
Ory Oathkeeper 0.38.2
Ory Oathkeeper 0.38.3
Ory Oathkeeper 0.38.4
Ory Oathkeeper 0.38.5
Ory Oathkeeper 0.38.6
Ory Oathkeeper 0.38.7
Ory Oathkeeper 0.38.8
Ory Oathkeeper 0.38.9
Ory Oathkeeper 0.38.10
Ory Oathkeeper 0.38.11
4.3
CVSSv3
CVE-2019-1758
A vulnerability in 802.1x function of Cisco IOS Software on the Catalyst 6500 Series Switches could allow an unauthenticated, adjacent malicious user to access the network prior to authentication. The vulnerability is due to how the 802.1x packets are handled in the process path....
Cisco Ios 15.2\\(1\\)sy7
Cisco Ios 15.1\\(2\\)sy13
Cisco Ios 15.3\\(1\\)sy2
Cisco Ios 15.1\\(1\\)sy2
Cisco Ios 15.2\\(4\\)jn1
Cisco Ios 12.2\\(33\\)sxj8
Cisco Ios 15.1\\(2\\)sy12
Cisco Ios 15.1\\(3\\)svn2
Cisco Ios 15.5\\(1\\)sy2
Cisco Ios 12.2\\(33\\)sxj7
Cisco Ios 15.4\\(1\\)sy1
Cisco Ios 15.1\\(3\\)svi1b
Cisco Ios 15.1\\(2\\)sy1
Cisco Ios 15.1\\(1\\)sy3
Cisco Ios 15.1\\(4\\)m12c
Cisco Ios 12.2\\(33\\)sxj9
Cisco Ios 15.1\\(2\\)sy10
Cisco Ios 15.1\\(2\\)sy9
Cisco Ios 15.1\\(3\\)svp2
Cisco Ios 15.2\\(3\\)ea1
Cisco Ios 15.1\\(1\\)sy6
Cisco Ios 15.4\\(1\\)sy2
7.4
CVSSv3
CVE-2019-1594
A vulnerability in the 802.1X implementation for Cisco NX-OS Software could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to incomplete input validation of Extensible Authentication P...
Cisco Nx-os
7.5
CVSSv3
CVE-2019-9496
An invalid authentication sequence could result in the hostapd process terminating due to missing state validation steps when processing the SAE confirm message when in hostapd/AP mode. All version of hostapd with SAE support are vulnerable. An attacker may force the hostapd proc...
W1.fi Hostapd
W1.fi Wpa Supplicant
Fedoraproject Fedora 28
Fedoraproject Fedora 29
Fedoraproject Fedora 30
NA
CVE-2008-0960
SNMPv3 HMAC verification in (1) Net-SNMP 5.2.x prior to 5.2.4.1, 5.3.x prior to 5.3.2.1, and 5.4.x prior to 5.4.1.1; (2) UCD-SNMP; (3) eCos; (4) Juniper Session and Resource Control (SRC) C-series 1.0.0 up to and including 2.0.0; (5) NetApp (aka Network Appliance) Data ONTAP 7.3R...
Juniper Session And Resource Control 2.0
Juniper Src Pe 1.0
Juniper Session And Resource Control 1.0
Juniper Src Pe 2.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »