Sign in Sign up
JA · EN · FR
SecPulse

Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Categories
All 🌐 Web Application 🧭 Browser 🖥️ Operating System 📱 Mobile 🛰️ Network Infrastructure ☁️ Cloud / Container 📝 CMS / Site Builder 🗄️ Database / Storage 🔐 Auth / Identity 🔑 Cryptography 🛠️ DevOps / CI-CD 🤖 AI / ML 🔌 IoT / Embedded 🧩 Hardware / Firmware 🏢 Enterprise SaaS 🧰 Developer Tooling ☠️ Malicious Package 📦 Other
Tag groups
All 💬 Programming Languages 22 🧱 Web Frameworks 29 📱 Mobile Platforms 6 🤖 AI/ML Frameworks 11 🖥️ Web Servers 9 🗄️ Databases 13 📝 CMS 9 ☁️ Cloud Platforms 11 📦 Container Tech 12 🖥️ Operating Systems 15 ⚔️ Attack Types 25 🧬 CWE 185 🏢 Vendors 581 📦 Products 666 🌳 Package Ecosystems 24 🛠️ DevOps Tools 17 📡 Protocols 15
Popular tags (Top 40)
Rootio Linux419 Microsoft386 C237 Java183 Jre178 Java Min178 Bitnami178 Windows177 Rootdebian11175 Rootdebian12151 Linux130 Cwe 20125 Cwe 78120 Linux Kernel106 Cwe 787105 Apple99 Cwe 41699 Cwe 2296 Rootdebian1393 Cwe 11990 Cisco89 Denial of Service85 Cwe 9484 Multiple Products79 Adobe78 Google77 Cwe 50270 Cwe 7966 Cwe 8954 Apache47 Cwe 91844 Cwe 28443 Oracle42 Cwe 28741 JavaScript41 PHP41 Cwe 7740 Chromium V838 Cwe 30638 Cwe 84337
Filtering: Tag: cwe-287 Clear
ID Title
CVE-2026-8185 Authentication Bypass in CVE-2026-8185 (CVE-2026-8185)
authentication bypass in CVE-2026-8185 (CVE-2026-8185). Risk of unauthorized operations or information disclosure.
CVE-2026-42560 Authentication Bypass in oauth (CVE-2026-42560)
authentication bypass in oauth (CVE-2026-42560). Confidential information can be exposed externally. Exploitable via ``user.ID``.
CVE-2026-41070 Authentication Bypass in openvpn (CVE-2026-41070)
authentication bypass in openvpn (CVE-2026-41070). Confidential information can be exposed externally. Exploitable via ``plugin``.
CVE-2026-41574 Authentication Bypass in CVE-2026-41574 (CVE-2026-41574)
authentication bypass in CVE-2026-41574 (CVE-2026-41574). Risk of unauthorized operations or information disclosure.
CVE-2026-39852 Authentication Bypass in io.quarkus:quarkus-vertx-http (CVE-2026-39852)
authentication bypass in io.quarkus:quarkus-vertx-http (CVE-2026-39852). Confidential information can be exposed externally. Mitigation: upgrade to `3.35.1.1` or later.
CVE-2026-35579 Authentication Bypass in github.com/coredns/coredns (CVE-2026-35579)
authentication bypass in github.com/coredns/coredns (CVE-2026-35579). Successful exploitation can lead to full system takeover. Exploitable via ``tsigStatus``. Mitigation: upgrade to `1.14.3` or later.
CVE-2026-33190 Authentication Bypass in github.com/coredns/coredns (CVE-2026-33190)
authentication bypass in github.com/coredns/coredns (CVE-2026-33190). Confidential information can be exposed externally. Mitigation: upgrade to `1.14.3` or later.
CVE-2025-32975 KEV [KEV] Authentication Bypass in Quest kace-systems-management-appliance-sma (CVE-2025-32975)
authentication bypass in Quest kace-systems-management-appliance-sma (CVE-2025-32975). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-27351 KEV [KEV] Authentication Bypass in Papercut ngmf (CVE-2023-27351)
authentication bypass in Papercut ngmf (CVE-2023-27351). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-7921 KEV [KEV] Authentication Bypass in Hikvision multiple-products (CVE-2017-7921)
authentication bypass in Hikvision multiple-products (CVE-2017-7921). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2026-20127 KEV [KEV] Authentication Bypass in Cisco catalyst-sd-wan-controller-and-manager (CVE-2026-20127)
authentication bypass in Cisco catalyst-sd-wan-controller-and-manager (CVE-2026-20127). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-19006 KEV [KEV] Authentication Bypass in Sangoma freepbx (CVE-2019-19006)
authentication bypass in Sangoma freepbx (CVE-2019-19006). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-7836 KEV [KEV] Authentication Bypass in Skysea client-view (CVE-2016-7836)
authentication bypass in Skysea client-view (CVE-2016-7836). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-7755 KEV [KEV] Authentication Bypass in Juniper screenos (CVE-2015-7755)
authentication bypass in Juniper screenos (CVE-2015-7755). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-49706 KEV [KEV] Authentication Bypass in Microsoft sharepoint (CVE-2025-49706)
authentication bypass in Microsoft sharepoint (CVE-2025-49706). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-3935 KEV [KEV] Authentication Bypass in Connectwise screenconnect (CVE-2025-3935)
authentication bypass in Connectwise screenconnect (CVE-2025-3935). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-32030 KEV [KEV] Authentication Bypass in Asus routers (CVE-2021-32030)
authentication bypass in Asus routers (CVE-2021-32030). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-53704 KEV [KEV] Authentication Bypass in Sonicwall sonicos (CVE-2024-53704)
authentication bypass in Sonicwall sonicos (CVE-2024-53704). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-11680 KEV [KEV] Authentication Bypass in projectsend (CVE-2024-11680)
authentication bypass in projectsend (CVE-2024-11680). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-49039 KEV [KEV] Authentication Bypass in Microsoft windows (CVE-2024-49039)
authentication bypass in Microsoft windows (CVE-2024-49039). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-8956 KEV [KEV] Authentication Bypass in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8956)
authentication bypass in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8956). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-7593 KEV [KEV] Authentication Bypass in Ivanti virtual-traffic-manager (CVE-2024-7593)
authentication bypass in Ivanti virtual-traffic-manager (CVE-2024-7593). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-33044 KEV [KEV] Authentication Bypass in Dahua ip-camera-firmware (CVE-2021-33044)
authentication bypass in Dahua ip-camera-firmware (CVE-2021-33044). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-33045 KEV [KEV] Authentication Bypass in Dahua ip-camera-firmware (CVE-2021-33045)
authentication bypass in Dahua ip-camera-firmware (CVE-2021-33045). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-21410 KEV [KEV] Authentication Bypass in Microsoft exchange-server (CVE-2024-21410)
authentication bypass in Microsoft exchange-server (CVE-2024-21410). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-35082 KEV [KEV] Authentication Bypass in Ivanti endpoint-manager-mobile-epmm-and-mobileiron-core (CVE-2023-35082)
authentication bypass in Ivanti endpoint-manager-mobile-epmm-and-mobileiron-core (CVE-2023-35082). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-46805 KEV [KEV] Authentication Bypass in Ivanti connect-secure-and-policy-secure (CVE-2023-46805)
authentication bypass in Ivanti connect-secure-and-policy-secure (CVE-2023-46805). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-35078 KEV [KEV] Authentication Bypass in Ivanti endpoint-manager-mobile-epmm (CVE-2023-35078)
authentication bypass in Ivanti endpoint-manager-mobile-epmm (CVE-2023-35078). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-20867 KEV [KEV] Authentication Bypass in Vmware tools (CVE-2023-20867)
authentication bypass in Vmware tools (CVE-2023-20867). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-27876 KEV [KEV] Authentication Bypass in Veritas backup-exec-agent (CVE-2021-27876)
authentication bypass in Veritas backup-exec-agent (CVE-2021-27876). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-27877 KEV [KEV] Authentication Bypass in Veritas backup-exec-agent (CVE-2021-27877)
authentication bypass in Veritas backup-exec-agent (CVE-2021-27877). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-27878 KEV [KEV] Authentication Bypass in Veritas backup-exec-agent (CVE-2021-27878)
authentication bypass in Veritas backup-exec-agent (CVE-2021-27878). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-39226 KEV [KEV] Authentication Bypass in Grafana labs grafana-labs (CVE-2021-39226)
authentication bypass in Grafana labs grafana-labs (CVE-2021-39226). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-10561 KEV [KEV] Authentication Bypass in Dasan gigabit-passive-optical-network-gpon-routers (CVE-2018-10561)
authentication bypass in Dasan gigabit-passive-optical-network-gpon-routers (CVE-2018-10561). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-1187 KEV [KEV] Authentication Bypass in D-link and trendnet d-link-and-trendnet (CVE-2015-1187)
authentication bypass in D-link and trendnet d-link-and-trendnet (CVE-2015-1187). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-0543 KEV [KEV] Authentication Bypass in Microsoft windows (CVE-2019-0543)
authentication bypass in Microsoft windows (CVE-2019-0543). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-33766 KEV [KEV] Authentication Bypass in Microsoft exchange-server (CVE-2021-33766)
authentication bypass in Microsoft exchange-server (CVE-2021-33766). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-32648 KEV [KEV] Authentication Bypass in October cms october-cms (CVE-2021-32648)
authentication bypass in October cms october-cms (CVE-2021-32648). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-22893 KEV [KEV] Authentication Bypass in Ivanti pulse-connect-secure (CVE-2021-22893)
authentication bypass in Ivanti pulse-connect-secure (CVE-2021-22893). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-5849 KEV [KEV] Authentication Bypass in unraid (CVE-2020-5849)
authentication bypass in unraid (CVE-2020-5849). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-0688 KEV [KEV] Authentication Bypass in Microsoft exchange-server (CVE-2020-0688)
authentication bypass in Microsoft exchange-server (CVE-2020-0688). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-34523 KEV [KEV] Authentication Bypass in Microsoft exchange-server (CVE-2021-34523)
authentication bypass in Microsoft exchange-server (CVE-2021-34523). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-12812 KEV [KEV] Vulnerability in Fortinet fortios (CVE-2020-12812)
vulnerability in Fortinet fortios (CVE-2020-12812). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →