Vulnerabilities > Incorrect Comparison

DATE	CVE	VULNERABILITY TITLE	RISK
2024-09-18	CVE-2024-6641	Incorrect Comparison vulnerability in Getastra WP Hardening The WP Hardening – Fix Your WordPress Security plugin for WordPress is vulnerable to Security Feature Bypass in all versions up to, and including, 1.2.6. network low complexity getastra CWE-697	5.3
2024-08-20	CVE-2024-41657	Incorrect Comparison vulnerability in Casbin Casdoor Casdoor is a UI-first Identity and Access Management (IAM) / Single-Sign-On (SSO) platform. network low complexity casbin CWE-697	8.8
2024-08-01	CVE-2024-32862	Incorrect Comparison vulnerability in Johnsoncontrols Exacqvision web Service 20.06.11.0/20.06.3.0/21.03 Under certain circumstances the ExacqVision Web Services does not provide sufficient protection from untrusted domains. network low complexity johnsoncontrols CWE-697	8.1
2024-07-25	CVE-2024-24621	Incorrect Comparison vulnerability in Softaculous Webuzo Softaculous Webuzo contains an authentication bypass vulnerability through the password reset functionality. network low complexity softaculous CWE-697 critical	9.8
2024-07-10	CVE-2024-5217	Incorrect Comparison vulnerability in Servicenow Utah/Vancouver/Washingtondc ServiceNow has addressed an input validation vulnerability that was identified in the Washington DC, Vancouver, and earlier Now Platform releases. network low complexity servicenow CWE-697 critical	9.8
2024-07-08	CVE-2024-39742	Incorrect Comparison vulnerability in IBM MQ Operator IBM MQ Operator 3.2.2 and IBM MQ Operator 2.0.24 could allow a user to bypass authentication under certain configurations due to a partial string comparison vulnerability. network low complexity ibm CWE-697 critical	9.8
2024-06-28	CVE-2024-38522	Incorrect Comparison vulnerability in Hushline Hush Line Hush Line is a free and open-source, anonymous-tip-line-as-a-service for organizations or individuals. network low complexity hushline CWE-697	6.3
2024-02-06	CVE-2023-45213	Incorrect Comparison vulnerability in Westermo L206-F2G Firmware 4.24 A potential attacker with access to the Westermo Lynx device would be able to execute malicious code that could affect the correct functioning of the device. network low complexity westermo CWE-697	6.5
2024-02-04	CVE-2015-10129	Incorrect Comparison vulnerability in Samwilson Planet-Freo A vulnerability was found in planet-freo up to 20150116 and classified as problematic. network high complexity samwilson CWE-697	5.9
2024-02-02	CVE-2023-50940	Incorrect Comparison vulnerability in IBM Powersc 1.3/2.0/2.1 IBM PowerSC 1.3, 2.0, and 2.1 uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to carry out privileged actions and retrieve sensitive information as the domain name is not being limited to only trusted domains. network low complexity ibm CWE-697 critical	9.8

Vulnerabilities > Incorrect Comparison {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Incorrect Comparison"}]}

Vulnerabilities > Incorrect Comparison