Vulnerabilities > Authentication Bypass by Spoofing
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-27 | CVE-2021-27862 | Authentication Bypass by Spoofing vulnerability in multiple products Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using LLC/SNAP headers with invalid length and Ethernet to Wifi frame conversion (and optionally VLAN0 headers). | 4.7 |
| 2022-09-27 | CVE-2021-27853 | Authentication Bypass by Spoofing vulnerability in multiple products Layer 2 network filtering capabilities such as IPv6 RA guard or ARP inspection can be bypassed using combinations of VLAN 0 headers and LLC/SNAP headers. | 4.7 |
| 2022-09-21 | CVE-2021-43310 | Authentication Bypass by Spoofing vulnerability in Keylime A vulnerability in Keylime before 6.3.0 allows an attacker to craft a request to the agent that resets the U and V keys as if the agent were being re-added to a verifier. | 9.8 |
| 2022-09-21 | CVE-2022-23949 | Authentication Bypass by Spoofing vulnerability in Keylime In Keylime before 6.3.0, unsanitized UUIDs can be passed by a rogue agent and can lead to log spoofing on the verifier and registrar. | 7.5 |
| 2022-09-16 | CVE-2022-37709 | Authentication Bypass by Spoofing vulnerability in Tesla Model 3 Firmware and Tesla Tesla Model 3 V11.0(2022.4.5.1 6b701552d7a6) Tesla mobile app v4.23 is vulnerable to Authentication Bypass by spoofing. | 5.3 |
| 2022-08-25 | CVE-2022-32744 | Authentication Bypass by Spoofing vulnerability in Samba A flaw was found in Samba. | 8.8 |
| 2022-08-15 | CVE-2022-33991 | Authentication Bypass by Spoofing vulnerability in Dproxy-Nexgen Project Dproxy-Nexgen dproxy-nexgen (aka dproxy nexgen) forwards and caches DNS queries with the CD (aka checking disabled) bit set to 1. | 5.3 |
| 2022-07-29 | CVE-2022-2324 | Authentication Bypass by Spoofing vulnerability in Sonicwall Email Security 10.0.9 Improperly Implemented Security Check vulnerability in the SonicWall Hosted Email Security leads to bypass of Capture ATP security service in the appliance. | 7.5 |
| 2022-07-29 | CVE-2022-35629 | Authentication Bypass by Spoofing vulnerability in Rapid7 Velociraptor Due to a bug in the handling of the communication between the client and server, it was possible for one client, already registered with their own client ID, to send messages to the server claiming to come from another client ID. | 5.4 |
| 2022-07-28 | CVE-2022-30319 | Authentication Bypass by Spoofing vulnerability in Honeywell Saia PG5 Controls Suite Saia Burgess Controls (SBC) PCD through 2022-05-06 allows Authentication bypass. | 8.1 |