Vulnerabilities > Authentication Bypass by Spoofing
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-10 | CVE-2023-50463 | Authentication Bypass by Spoofing vulnerability in Caddyserver Caddy 0.5.0/0.5.1/0.6.0 The caddy-geo-ip (aka GeoIP) middleware through 0.6.0 for Caddy 2, when trust_header X-Forwarded-For is used, allows attackers to spoof their source IP address via an X-Forwarded-For header, which may bypass a protection mechanism (trusted_proxy directive in reverse_proxy or IP address range restrictions). | 6.5 |
| 2023-11-22 | CVE-2023-6263 | Authentication Bypass by Spoofing vulnerability in Networkoptix Nxcloud An issue was discovered by IPVM team in Network Optix NxCloud before 23.1.0.40440. It was possible to add a fake VMS server to NxCloud by using the exact identification of a legitimate VMS server. | 8.1 |
| 2023-11-22 | CVE-2023-3103 | Authentication Bypass by Spoofing vulnerability in Unitree A1 Firmware Authentication bypass vulnerability, the exploitation of which could allow a local attacker to perform a Man-in-the-Middle (MITM) attack on the robot's camera video stream. | 5.9 |
| 2023-11-08 | CVE-2023-5801 | Authentication Bypass by Spoofing vulnerability in Huawei Emui and Harmonyos Vulnerability of identity verification being bypassed in the face unlock module. | 9.1 |
| 2023-10-23 | CVE-2023-28803 | Authentication Bypass by Spoofing vulnerability in Zscaler Client Connector An authentication bypass by spoofing of a device with a synthetic IP address is possible in Zscaler Client Connector on Windows, allowing a functionality bypass. | 6.5 |
| 2023-10-10 | CVE-2023-30803 | Authentication Bypass by Spoofing vulnerability in Sangfor Next-Gen Application Firewall 8.0.17 The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authentication bypass vulnerability. | 9.8 |
| 2023-09-06 | CVE-2023-41329 | Authentication Bypass by Spoofing vulnerability in Wiremock products WireMock is a tool for mocking HTTP services. | 6.6 |
| 2023-09-05 | CVE-2023-4178 | Authentication Bypass by Spoofing vulnerability in Neutron Smart VMS Authentication Bypass by Spoofing vulnerability in Neutron Neutron Smart VMS allows Authentication Bypass.This issue affects Neutron Smart VMS: before b1130.1.0.1. | 9.8 |
| 2023-07-18 | CVE-2023-34329 | Authentication Bypass by Spoofing vulnerability in AMI Megarac Sp-X 12/13 AMI MegaRAC SPx12 contains a vulnerability in BMC where a User may cause an authentication bypass by spoofing the HTTP header. | 8.0 |
| 2023-07-06 | CVE-2022-48513 | Authentication Bypass by Spoofing vulnerability in Huawei Emui and Harmonyos Vulnerability of identity verification being bypassed in the Gallery module. | 9.8 |