Vulnerabilities > Authentication Bypass by Spoofing
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-01 | CVE-2023-22814 | Authentication Bypass by Spoofing vulnerability in Westerndigital MY Cloud OS An authentication bypass issue via spoofing was discovered in the token-based authentication mechanism that could allow an attacker to carry out an impersonation attack. This issue affects My Cloud OS 5 devices: before 5.26.202. | 9.8 |
| 2023-06-28 | CVE-2021-25827 | Authentication Bypass by Spoofing vulnerability in Emby Emby Server < 4.7.12.0 is vulnerable to a login bypass attack by setting the X-Forwarded-For header to a local IP-address. | 9.8 |
| 2023-06-23 | CVE-2023-27964 | Authentication Bypass by Spoofing vulnerability in Apple Airpods Firmware 5E133 An authentication issue was addressed with improved state management. | 5.4 |
| 2023-06-22 | CVE-2023-3128 | Authentication Bypass by Spoofing vulnerability in Grafana Grafana is validating Azure AD accounts based on the email claim. | 9.8 |
| 2023-06-19 | CVE-2023-34158 | Authentication Bypass by Spoofing vulnerability in Huawei Emui 12.0.0/13.0.0 Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to hide app icons on the desktop to prevent them from being uninstalled. | 5.3 |
| 2023-06-19 | CVE-2023-34160 | Authentication Bypass by Spoofing vulnerability in Huawei Emui 12.0.0/13.0.0 Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to hide app icons on the desktop to prevent them from being uninstalled. | 5.3 |
| 2023-06-19 | CVE-2023-34167 | Authentication Bypass by Spoofing vulnerability in Huawei Emui Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to hide app icons on the desktop to prevent them from being uninstalled. | 5.3 |
| 2023-06-16 | CVE-2022-48469 | Authentication Bypass by Spoofing vulnerability in Huawei B535-232A Firmware 2.0.0.1 There is a traffic hijacking vulnerability in Huawei routers. | 6.5 |
| 2023-06-13 | CVE-2023-2807 | Authentication Bypass by Spoofing vulnerability in Pandorafms Pandora FMS Authentication Bypass by Spoofing vulnerability in the password reset process of Pandora FMS allows an unauthenticated attacker to initiate a password reset process for any user account without proper authentication. | 9.8 |
| 2023-06-12 | CVE-2022-36331 | Authentication Bypass by Spoofing vulnerability in Westerndigital products Western Digital My Cloud, My Cloud Home, My Cloud Home Duo, and SanDisk ibi devices were vulnerable to an impersonation attack that could allow an unauthenticated attacker to gain access to user data. This issue affects My Cloud OS 5 devices: before 5.25.132; My Cloud Home and My Cloud Home Duo: before 8.13.1-102; SanDisk ibi: before 8.13.1-102. | 7.5 |