Vulnerabilities > Authentication Bypass by Spoofing

DATE CVE VULNERABILITY TITLE RISK
2025-04-10 CVE-2025-32275 Authentication Bypass by Spoofing vulnerability in Ays-Pro Survey Maker
Authentication Bypass by Spoofing vulnerability in Ays Pro Survey Maker allows Identity Spoofing.
network
low complexity
ays-pro CWE-290
5.3
5.3
2025-04-07 CVE-2024-58124 Authentication Bypass by Spoofing vulnerability in Huawei Emui and Harmonyos
Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
network
low complexity
huawei CWE-290
critical
 9.1
9.1
2025-04-07 CVE-2024-58125 Authentication Bypass by Spoofing vulnerability in Huawei Emui and Harmonyos
Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
network
low complexity
huawei CWE-290
critical
 9.1
9.1
2025-04-07 CVE-2024-58126 Authentication Bypass by Spoofing vulnerability in Huawei Emui and Harmonyos
Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
network
low complexity
huawei CWE-290
critical
 9.1
9.1
2025-04-07 CVE-2024-58127 Authentication Bypass by Spoofing vulnerability in Huawei Emui and Harmonyos
Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
network
low complexity
huawei CWE-290
critical
 9.1
9.1
2025-04-07 CVE-2025-31170 Authentication Bypass by Spoofing vulnerability in Huawei Emui and Harmonyos
Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
network
low complexity
huawei CWE-290
critical
 9.1
9.1
2025-02-07 CVE-2025-1104 Authentication Bypass by Spoofing vulnerability in Dlink Dhp-W310Av Firmware 1.04
A vulnerability has been found in D-Link DHP-W310AV 1.04 and classified as critical.
network
low complexity
dlink CWE-290
critical
 9.8
9.8
2025-01-29 CVE-2025-21415 Authentication Bypass by Spoofing vulnerability in Microsoft Azure AI Face Service
Authentication bypass by spoofing in Azure AI Face Service allows an authorized attacker to elevate privileges over a network.
network
low complexity
microsoft CWE-290
8.8
8.8
2025-01-21 CVE-2025-24458 Authentication Bypass by Spoofing vulnerability in Jetbrains Youtrack
In JetBrains YouTrack before 2024.3.55417 account takeover was possible via spoofed email and Helpdesk integration
local
low complexity
jetbrains CWE-290
7.8
7.8
2024-12-31 CVE-2024-12108 Authentication Bypass by Spoofing vulnerability in Progress Whatsup Gold
In WhatsUp Gold versions released before 2024.0.2, an attacker can gain access to the WhatsUp Gold server via the public API.
network
low complexity
progress CWE-290
critical
 9.6
9.6