Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-305

CWE-305

Authentication Bypass by Primary Weakness

Parent: CWE-1390 - Weak Authentication

The authentication algorithm is sound, but the implemented mechanism can be bypassed as the result of a separate weakness that is primary to the authentication error.

146 vulnerabilities with CWE-305

CVE-2023-2959 HIGH

Oliva Expertise EKS < 1.2 - Authentication Bypass

CVE-2023-34137 CRITICAL

SonicWall GMS <9.3.2-SP1 & Analytics <2.5.0.4-R7 - Auth Bypass

CVE-2023-34124 CRITICAL

SonicWall GMS <9.3.2-SP1 & Analytics <2.5.0.4-R7 - Auth Bypass

CVE-2023-28126 MEDIUM

Ivanti Avalanche < 6.3.4.153 - Authentication Bypass via SetUser Method or Race Condition

CVE-2023-1833 CRITICAL

DTS Electronics Redline Router <7.17 - Auth Bypass

CVE-2023-28727 CRITICAL

Panasonic AiSEG2 <2.93A - Auth Bypass

CVE-2023-27538 MEDIUM

libcurl < 8.0.0 - Authentication Bypass via SSH Connection Reuse

CVE-2023-27536 MEDIUM

libcurl < 8.0.0 - Authentication Bypass via Connection Reuse

CVE-2023-27535 MEDIUM

libcurl < 8.0.0 - Authentication Bypass via FTP Connection Reuse

CVE-2023-27582 CRITICAL

maddy 0.2.0-0.6.2 - Authentication Bypass via SASL PLAIN Username

CVE-2023-1307 CRITICAL

froxlor < 2.0.13 - Authentication Bypass

CVE-2023-0777 CRITICAL

modoboa < 2.0.4 - Authentication Bypass

CVE-2022-48470 MEDIUM

Huawei HiLink AI Life - Authentication Bypass

CVE-2022-40723 MEDIUM

PingFederate 11.1.0-11.1.4 and PingID Integration Kit < 2.24 - Authentication Bypass via RADIUS PCV Adapter

CVE-2022-3100 MEDIUM

OpenStack Barbican - Authentication Bypass via API Query String

CVE-2022-4722 HIGH

rdiffweb < 2.5.5 - Authentication Bypass

CVE-2022-39245 HIGH

makedeb/mist < 0.9.5 - Authentication Bypass via PATH Variable Sudo Binary

CVE-2022-38700 HIGH

OpenHarmony <v3.1.1 - Privilege Escalation

CVE-2022-38081 MEDIUM

OpenHarmony <v3.1.2 - Privilege Escalation

CVE-2022-38064 MEDIUM

OpenHarmony <v3.1.2 - Privilege Escalation

CVE-2022-2651 CRITICAL

bookwyrm-social/bookwyrm <0.4.5 - Auth Bypass

CVE-2022-0547 CRITICAL

OpenVPN <2.4.13 or 2.5.7 - Auth Bypass

CVE-2022-23729 HIGH

Android < 11.0 - Unauthenticated Shell Access via ADB

CVE-2022-0451 MEDIUM

Dart SDK < 2.16.0 - Sensitive Information Exposure via HTTPClient Cross-Origin Redirect

CVE-2021-26102 CRITICAL

FortiWAN 4.4.0-4.5.7 - Unauthenticated Path Traversal via Crafted POST Request

Previous Page 5 of 6 Next

Details

Vulnerabilities 146

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy