Vulnerabilities > Improper Handling of Case Sensitivity
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-13 | CVE-2021-28323 | Improper Handling of Case Sensitivity vulnerability in Microsoft products Windows DNS Information Disclosure Vulnerability | 6.5 |
| 2021-03-22 | CVE-2021-25920 | Improper Handling of Case Sensitivity vulnerability in Open-Emr Openemr In OpenEMR, versions v2.7.2-rc1 to 6.0.0 are vulnerable to Improper Access Control when creating a new user, which leads to a malicious user able to read and send sensitive messages on behalf of the victim user. | 6.5 |
| 2020-10-02 | CVE-2020-15234 | Improper Handling of Case Sensitivity vulnerability in ORY Fosite ORY Fosite is a security first OAuth2 & OpenID Connect framework for Go. | 4.8 |
| 2020-07-24 | CVE-2020-12812 | Improper Handling of Case Sensitivity vulnerability in Fortinet Fortios An improper authentication vulnerability in SSL VPN in FortiOS 6.4.0, 6.2.0 to 6.2.3, 6.0.9 and below may result in a user being able to log in successfully without being prompted for the second factor of authentication (FortiToken) if they changed the case of their username. | 9.8 |
| 2020-04-21 | CVE-2020-5301 | Improper Handling of Case Sensitivity vulnerability in Simplesamlphp SimpleSAMLphp versions before 1.18.6 contain an information disclosure vulnerability. | 3.1 |
| 2018-09-13 | CVE-2018-8337 | Improper Handling of Case Sensitivity vulnerability in Microsoft Windows 10 and Windows Server 2016 A security feature bypass vulnerability exists when Windows Subsystem for Linux improperly handles case sensitivity, aka "Windows Subsystem for Linux Security Feature Bypass Vulnerability." This affects Windows 10, Windows 10 Servers. | 5.3 |
| 2018-04-29 | CVE-2018-9845 | Improper Handling of Case Sensitivity vulnerability in Etherpad Lite Etherpad Lite before 1.6.4 is exploitable for admin access. | 9.8 |
| 2017-06-15 | CVE-2017-8493 | Improper Handling of Case Sensitivity vulnerability in Microsoft products Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to set variables that are either read-only or require authentication when Windows fails to enforce case sensitivity for certain variable checks, aka "Windows Security Feature Bypass Vulnerability". | 5.5 |
| 2007-06-22 | CVE-2007-3365 | Improper Handling of Case Sensitivity vulnerability in Myserverproject Myserver 0.8.9 MyServer 0.8.9 and earlier does not properly handle uppercase characters in filename extensions, which allows remote attackers to obtain sensitive information (script source code) via a modified extension, as demonstrated by post.mscgI. | 7.5 |
| 2005-05-02 | CVE-2005-0269 | Improper Handling of Case Sensitivity vulnerability in SIR Gnuboard 3.40 The file extension check in GNUBoard 3.40 and earlier only verifies extensions that contain all lowercase letters, which allows remote attackers to upload arbitrary files via file extensions that include uppercase letters. | 9.8 |