Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
An authentication bypass vulnerability exists in HPE AutoPass License Server (APLS) prior to 9.17.
CVE-2025-37091
CRITICAL CVSS 9.8
Find Similar
A command injection remote code execution vulnerability exists in HPE StoreOnce Software.
A vulnerability in the HPE Performance Cluster Manager (HPCM) GUI could allow an attacker to bypass authentication.
CWE-287: Improper Authentication vulnerability exists that could cause an Authentication Bypass when an unauthorized user without permission rights has physical access to the EPAS-UI computer and is a
CVE-2025-37107
CRITICAL CVSS 9.8
Find Similar
An authentication bypass vulnerability exists in HPE AutoPass License Server (APLS) prior to 9.18.
CVE-2026-23600
CRITICAL CVSS 10.0
Find Similar
A remote authentication bypass vulnerability  exists in HPE AutoPass License Server (APLS).
CVE-2025-37106
CRITICAL CVSS 9.8
Find Similar
An authentication bypass and disclosure of information vulnerability exists in HPE AutoPass License Server (APLS) prior to 9.18.
Remote authentication bypass vulnerability in HPE Alletra Storage MP B10000 in versions prior to version 10.4.5 could be remotely exploited to allow disclosure of information.
An authentication bypass vulnerability could allow an attacker to access API functions without authentication.
CVE-2024-50640
CRITICAL CVSS 9.8
Find Similar
jeewx-boot 1.3 has an authentication bypass vulnerability in the preHandle function
Authentication Bypass vulnerability in jobx up to v1.0.1-RELEASE allows an attacker can exploit this vulnerability to access sensitive API without any token via the preHandle function.
CVE-2025-41064
CRITICAL CVSS 9.3
Find Similar
Incorrect authentication vulnerability in OpenSIAC, which could allow an attacker to impersonate a person using Cl@ve as an authentication method.
A flaw exists in the Windows login flow where an AuthContext token can be exploited for replay attacks and authentication bypass.
Insufficient protection against brute-force and runtime manipulation in the local authentication component in Two App Studio Journey 5.5.6 on iOS allows local attackers to bypass biometric and PIN-bas
Page 1+ Next →