Vulnerabilities > Cisco > DUO Authentication FOR Windows Logon AND RDP > 3.1.1

DATE	CVE	VULNERABILITY TITLE	RISK
2023-04-05	CVE-2023-20123	Authentication Bypass by Capture-replay vulnerability in Cisco DUO and DUO Authentication for Windows Logon and RDP A vulnerability in the offline access mode of Cisco Duo Two-Factor Authentication for macOS and Duo Authentication for Windows Logon and RDP could allow an unauthenticated, physical attacker to replay valid user session credentials and gain unauthorized access to an affected macOS or Windows device. low complexity cisco CWE-294	4.6
2020-10-14	CVE-2020-3427	Unspecified vulnerability in Cisco DUO Authentication for Windows Logon and RDP The Windows Logon installer prior to 4.1.2 did not properly validate file installation paths. local low complexity cisco	4.6

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.