When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
4,195 vulnerabilities with CWE-287
CVE-2025-37184
CRITICAL
Orchestrator Service - Auth Bypass
CVSS 9.8
CVE-2025-67859
MEDIUM
TLP <1.9.1 - Privilege Escalation
CVE-2025-68931
HIGH
Jervis <2.2 - Info Disclosure
CVSS 7.5
CVE-2025-66698
HIGH
Semantic machines <5.4.8 - Auth Bypass
CVSS 8.6
CVE-2025-69273
HIGH
Broadcom DX Netops Spectrum < 24.3.11 - Authentication Bypass
CVSS 7.5
CVE-2025-68717
CRITICAL
KAYSUS KS-WR3600 1.0.5.9.1 - Auth Bypass
CVSS 9.4
CVE-2025-15224
LOW
Haxx Curl < 8.18.0 - Authentication Bypass
CVSS 3.1
CVE-2025-15346
CRITICAL
Pypi Wolfssl < 5.8.4.post0 - Missing Authentication
CVE-2025-14942
CRITICAL
Wolfssh < 1.4.22 - Authentication Bypass
CVSS 9.8
CVE-2025-60534
CRITICAL
Blue Access Cobalt v02.000.195 - Auth Bypass
CVSS 9.8
CVE-2025-69197
MEDIUM
Pterodactyl <1.11.11 - Info Disclosure
CVSS 6.5
CVE-2025-64423
HIGH
Coollabs Coolify < 4.0.0 - Authentication Bypass
CVSS 8.8
CVE-2025-15458
HIGH
1234n Minicms < 1.8 - Authentication Bypass
CVSS 7.3
CVE-2025-15457
HIGH
1234n Minicms < 1.8 - Authentication Bypass
CVSS 7.3
CVE-2025-15456
HIGH
1234n Minicms < 1.8 - Authentication Bypass
CVSS 7.3
CVE-2025-15455
MEDIUM
1234n Minicms < 1.8 - Authentication Bypass
CVSS 6.5
CVE-2025-67158
HIGH
Revotech I6032w-fhw Firmware - Authentication Bypass
CVSS 7.5
CVE-2025-68926
CRITICAL
RustFS <1.0.0-alpha.78 - Auth Bypass
CVSS 9.8
CVE-2025-65925
MEDIUM
Zeroheight <2025-06-13 - Info Disclosure
CVSS 6.5
CVE-2025-56333
CRITICAL
Pangolin < 1.7.0 - Authentication Bypass
CVSS 9.8
CVE-2025-15069
HIGH
Gmission Web Fax < 4.0 - Authentication Bypass
CVSS 7.1
CVE-2025-15135
MEDIUM
joey-zhou xiaozhi-esp32-server-java <4.0.0 - Auth Bypass
CVSS 6.3
CVE-2025-15099
HIGH
Sim < 0.5.27 - Authentication Bypass
CVSS 7.3
CVE-2025-15097
HIGH
Alteryx Server - Auth Bypass
CVSS 7.3
CVE-2025-66174
MEDIUM
Hikvision DVR - Auth Bypass
CVSS 6.5
Details
Vulnerabilities
4,195
Exploit Likelihood
High