Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
authenticator vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2011-1991
Multiple untrusted search path vulnerabilities in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allow local users to gain privileges via a Trojan horse DLL in the current working d...
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008 -
Microsoft Windows Xp -
Microsoft Windows 7 -
Microsoft Windows Xp
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 2003 Server
231
VMScore
CVE-2012-4534
org/apache/tomcat/util/net/NioEndpoint.java in Apache Tomcat 6.x prior to 6.0.36 and 7.x prior to 7.0.28, when the NIO connector is used in conjunction with sendfile and HTTPS, allows remote malicious users to cause a denial of service (infinite loop) by terminating the connectio...
Apache Tomcat 6.0.15
Apache Tomcat 6.0.8
Apache Tomcat 6.0.9
Apache Tomcat 6.0.33
Apache Tomcat 6.0.14
Apache Tomcat 6.0.6
Apache Tomcat 6.0.7
Apache Tomcat 6.0.29
Apache Tomcat 6.0.2
Apache Tomcat 6.0.1
Apache Tomcat 6.0.27
Apache Tomcat 6.0.3
Apache Tomcat 6.0.12
Apache Tomcat 6.0.11
Apache Tomcat 6.0.4
Apache Tomcat 6.0.0
Apache Tomcat 6.0.32
Apache Tomcat 6.0.13
Apache Tomcat 6.0.19
Apache Tomcat 6.0.16
Apache Tomcat 6.0.17
Apache Tomcat 6.0.18
642
VMScore
CVE-2014-8609
The addAccount method in src/com/android/settings/accounts/AddAccountSettings.java in the Settings application in Android prior to 5.0.0 does not properly create a PendingIntent, which allows malicious users to use the SYSTEM uid for broadcasting an intent with arbitrary componen...
Google Android 4.4
Google Android 4.4.1
Google Android 4.4.2
Google Android 4.4.3
Google Android 4.0
Google Android 4.0.2
Google Android 4.2.2
Google Android 4.3.1
Google Android
Google Android 4.0.4
Google Android 4.1
Google Android 4.1.2
Google Android 4.2
Google Android 4.0.1
Google Android 4.0.3
Google Android 4.2.1
Google Android 4.3
4 Github repositories
NA
CVE-2022-39387
XWiki OIDC has various tools to manipulate OpenID Connect protocol in XWiki. Prior to version 1.29.1, even if a wiki has an OpenID provider configured through its xwiki.properties, it is possible to provide a third party provider its details through request parameters. One can th...
Xwiki Openid Connect
258
VMScore
CVE-2021-0215
On Juniper Networks Junos EX series, QFX Series, MX Series and SRX branch series devices, a memory leak occurs every time the 802.1X authenticator port interface flaps which can lead to other processes, such as the pfex process, responsible for packet forwarding, to crash and res...
Juniper Junos 15.1x49
Juniper Junos 15.1x53
Juniper Junos 14.1x53
Juniper Junos 16.1
Juniper Junos 17.2
Juniper Junos 17.3
Juniper Junos 17.4
Juniper Junos 18.1
Juniper Junos 18.2
Juniper Junos 18.3
Juniper Junos 18.4
Juniper Junos 19.1
Juniper Junos 19.2
Juniper Junos 19.3
Juniper Junos 19.4
383
VMScore
CVE-2021-32701
ORY Oathkeeper is an Identity & Access Proxy (IAP) and Access Control Decision API that authorizes HTTP requests based on sets of Access Rules. When you make a request to an endpoint that requires the scope `foo` using an access token granted with that `foo` scope, introspect...
Ory Oathkeeper 0.38.0
Ory Oathkeeper 0.38.1
Ory Oathkeeper 0.38.2
Ory Oathkeeper 0.38.3
Ory Oathkeeper 0.38.4
Ory Oathkeeper 0.38.5
Ory Oathkeeper 0.38.6
Ory Oathkeeper 0.38.7
Ory Oathkeeper 0.38.8
Ory Oathkeeper 0.38.9
Ory Oathkeeper 0.38.10
Ory Oathkeeper 0.38.11
294
VMScore
CVE-2019-1758
A vulnerability in 802.1x function of Cisco IOS Software on the Catalyst 6500 Series Switches could allow an unauthenticated, adjacent malicious user to access the network prior to authentication. The vulnerability is due to how the 802.1x packets are handled in the process path....
Cisco Ios 15.2\\(1\\)sy7
Cisco Ios 15.1\\(2\\)sy13
Cisco Ios 15.3\\(1\\)sy2
Cisco Ios 15.1\\(1\\)sy2
Cisco Ios 15.2\\(4\\)jn1
Cisco Ios 12.2\\(33\\)sxj8
Cisco Ios 15.1\\(2\\)sy12
Cisco Ios 15.1\\(3\\)svn2
Cisco Ios 15.5\\(1\\)sy2
Cisco Ios 12.2\\(33\\)sxj7
Cisco Ios 15.4\\(1\\)sy1
Cisco Ios 15.1\\(3\\)svi1b
Cisco Ios 15.1\\(2\\)sy1
Cisco Ios 15.1\\(1\\)sy3
Cisco Ios 15.1\\(4\\)m12c
Cisco Ios 12.2\\(33\\)sxj9
Cisco Ios 15.1\\(2\\)sy10
Cisco Ios 15.1\\(2\\)sy9
Cisco Ios 15.1\\(3\\)svp2
Cisco Ios 15.2\\(3\\)ea1
Cisco Ios 15.1\\(1\\)sy6
Cisco Ios 15.4\\(1\\)sy2
543
VMScore
CVE-2019-1594
A vulnerability in the 802.1X implementation for Cisco NX-OS Software could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to incomplete input validation of Extensible Authentication P...
Cisco Nx-os
445
VMScore
CVE-2019-9496
An invalid authentication sequence could result in the hostapd process terminating due to missing state validation steps when processing the SAE confirm message when in hostapd/AP mode. All version of hostapd with SAE support are vulnerable. An attacker may force the hostapd proc...
W1.fi Hostapd
W1.fi Wpa Supplicant
Fedoraproject Fedora 28
Fedoraproject Fedora 29
Fedoraproject Fedora 30
1000
VMScore
CVE-2008-0960
SNMPv3 HMAC verification in (1) Net-SNMP 5.2.x prior to 5.2.4.1, 5.3.x prior to 5.3.2.1, and 5.4.x prior to 5.4.1.1; (2) UCD-SNMP; (3) eCos; (4) Juniper Session and Resource Control (SRC) C-series 1.0.0 up to and including 2.0.0; (5) NetApp (aka Network Appliance) Data ONTAP 7.3R...
Juniper Session And Resource Control 2.0
Juniper Src Pe 1.0
Juniper Session And Resource Control 1.0
Juniper Src Pe 2.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »