Vulnerabilities > Authentication Bypass by Capture-replay
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-03-05 | CVE-2020-10185 | Authentication Bypass by Capture-replay vulnerability in Yubico Yubikey ONE Time Password Validation Server The sync endpoint in YubiKey Validation Server before 2.40 allows remote attackers to replay an OTP. | 6.8 |
2020-01-30 | CVE-2013-1351 | Authentication Bypass by Capture-replay vulnerability in Veraxsystems Network Management System Verax NMS prior to 2.10 allows authentication via the encrypted password without knowing the cleartext password. | 4.3 |
2019-12-16 | CVE-2019-13533 | Authentication Bypass by Capture-replay vulnerability in Omron PLC CJ Firmware and PLC CS Firmware In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PLC and the controller and replay requests that could result in the opening and closing of industrial valves. | 6.8 |
2019-12-02 | CVE-2019-12393 | Authentication Bypass by Capture-replay vulnerability in Anviz Management System Anviz access control devices are vulnerable to replay attacks which could allow attackers to intercept and replay open door requests. | 5.0 |
2019-10-31 | CVE-2019-18226 | Authentication Bypass by Capture-replay vulnerability in Honeywell products Honeywell equIP series and Performance series IP cameras and recorders, A vulnerability exists in the affected products where IP cameras and recorders have a potential replay attack vulnerability as a weak authentication method is retained for compatibility with legacy products. | 7.5 |
2019-10-24 | CVE-2019-18199 | Authentication Bypass by Capture-replay vulnerability in Fujitsu Lx390 Firmware An issue was discovered on Fujitsu Wireless Keyboard Set LX390 GK381 devices. | 6.9 |
2019-06-27 | CVE-2019-12887 | Authentication Bypass by Capture-replay vulnerability in Keyidentity Linotp KeyIdentity LinOTP before 2.10.5.3 has Incorrect Access Control (issue 1 of 2). | 6.8 |
2019-06-11 | CVE-2019-11334 | Authentication Bypass by Capture-replay vulnerability in Tzumi Klic Lock and Klic Smart Padlock Model 5686 Firmware An authentication bypass in website post requests in the Tzumi Electronics Klic Lock application 1.0.9 for mobile devices allows attackers to access resources (that are not otherwise accessible without proper authentication) via capture-replay. | 3.7 |
2019-06-05 | CVE-2019-9158 | Authentication Bypass by Capture-replay vulnerability in Gemalto Ezio DS3 Server 2.6.1 Gemalto DS3 Authentication Server 2.6.1-SP01 has Broken Access Control. | 2.7 |
2019-06-04 | CVE-2019-5307 | Authentication Bypass by Capture-replay vulnerability in Huawei P30 Firmware and P30 PRO Firmware Some Huawei 4G LTE devices, P30 versions before ELE-AL00 9.1.0.162(C01E160R1P12/C01E160R2P1) and P30 Pro versions before VOG-AL00 9.1.0.162(C01E160R1P12/C01E160R2P1), are exposed to a message replay vulnerability. | 4.3 |