Vulnerabilities > Authentication Bypass by Capture-replay
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-03-19 | CVE-2024-12137 | Authentication Bypass by Capture-replay vulnerability in Elfatek Elektronics ANKA JPD-00028 allows Session Hijacking.This issue affects ANKA JPD-00028: through 19.03.2025. NOTE: The vendor did not inform about the completion of the fixing process within the specified time. low complexity CWE-294 | 7.6 |
| 2024-12-31 | CVE-2024-12839 | The login mechanism via device authentication of CGFIDO from Changing Information Technology has an Authentication Bypass vulnerability. | 8.8 |
| 2024-12-25 | CVE-2024-52534 | Authentication Bypass by Capture-replay vulnerability in Dell Elastic Cloud Storage Dell ECS, version(s) prior to ECS 3.8.1.3, contain(s) an Authentication Bypass by Capture-replay vulnerability. | 5.4 |
| 2024-11-26 | CVE-2024-49595 | Authentication Bypass by Capture-replay vulnerability in Dell Wyse Management Suite Dell Wyse Management Suite, version WMS 4.4 and before, contain an Authentication Bypass by Capture-replay vulnerability. | 4.9 |
| 2024-11-09 | CVE-2024-36250 | Authentication Bypass by Capture-replay vulnerability in Mattermost Server Mattermost versions 9.11.x <= 9.11.2, and 9.5.x <= 9.5.10 fail to protect the mfa code against replay attacks, which allows an attacker to reuse the MFA code within ~30 seconds | 4.8 |
| 2024-10-29 | CVE-2024-22066 | Authentication Bypass by Capture-replay vulnerability in ZTE products There is a privilege escalation vulnerability in ZTE ZXR10 ZSR V2 intelligent multi service router . | 6.5 |
| 2024-09-18 | CVE-2024-39081 | Authentication Bypass by Capture-replay vulnerability in Jktyre Smart Tyre CAR & Bike 4.2.0 An issue in SMART TYRE CAR & BIKE v4.2.0 allows attackers to perform a man-in-the-middle attack via Bluetooth communications. | 4.2 |
| 2024-08-30 | CVE-2024-8260 | Authentication Bypass by Capture-replay vulnerability in Openpolicyagent Open Policy Agent A SMB force-authentication vulnerability exists in all versions of OPA for Windows prior to v0.68.0. | 7.3 |
| 2024-08-27 | CVE-2024-3982 | Authentication Bypass by Capture-replay vulnerability in Hitachienergy Microscada X Sys600 An attacker with local access to machine where MicroSCADA X SYS600 is installed, could enable the session logging supporting the product and try to exploit a session hijacking of an already established session. | 8.2 |
| 2024-07-30 | CVE-2024-5249 | Authentication Bypass by Capture-replay vulnerability in Perforce Akana API In versions of Akana API Platform prior to 2024.1.0, SAML tokens can be replayed. | 7.5 |