CVEs classified under CWE-303, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2025-13390 — CVSS 10.0 (critical): The WP Directory Kit plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1.4.4 due to…
CVE-2025-12421 — CVSS 9.9 (critical): Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used…
CVE-2025-66489 — CVSS 9.8 (critical): Cal.com is open-source scheduling software. Prior to 5.9.8, A flaw in the login credentials provider allows an attacker to bypass password…
CVE-2024-10127 — CVSS 9.8 (critical): Authentication bypass condition in LDAP authentication in M-Files server versions before 24.11 supported usage of OpenLDAP configurations…
CVE-2024-4985 — CVSS 9.8 (critical): An authentication bypass vulnerability was present in the GitHub Enterprise Server (GHES) when utilizing SAML single sign-on authentication…
CVE-2023-4860 — CVSS 9.6 (critical): Inappropriate implementation in Skia in Google Chrome prior to 115.0.5790.98 allowed a remote attacker who had compromised the renderer…
CVE-2026-28446 — CVSS 9.4 (critical): OpenClaw versions prior to 2026.2.1 with the voice-call extension installed and enabled contain an authentication bypass vulnerability in…
CVE-2024-4332: An authentication bypass vulnerability has been identified in the REST and SOAP API components of Tripwire Enterprise (TE) 9.1.0 when TE is…
CVE-2026-41103 — CVSS 9.1 (critical): Incorrect implementation of authentication algorithm in Microsoft SSO Plugin for Jira & Confluence allows an unauthorized attacker to…
CVE-2026-41053 — CVSS 8.8 (high): Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provider caused it granting…
CVE-2026-0073 — CVSS 8.8 (high): In adbd_tls_verify_cert of auth.cpp, there is a possible bypass of wireless ADB mutual authentication due to a logic error in the code…
CVE-2024-34722 — CVSS 8.8 (high): In smp_proc_rand of smp_act.cc, there is a possible authentication bypass during legacy BLE pairing due to incorrect implementation of a…
CVE-2023-44420 — CVSS 8.8 (high): D-Link DIR-X3260 prog.cgi Incorrect Implementation of Authentication Algorithm Authentication Bypass Vulnerability. This vulnerability…
CVE-2023-34282 — CVSS 8.8 (high): D-Link DIR-2150 HNAP Incorrect Implementation of Authentication Algorithm Authentication Bypass Vulnerability. This vulnerability allows…
CVE-2023-34274 — CVSS 8.8 (high): D-Link DIR-2150 LoginPassword Incorrect Implementation of Authentication Algorithm Authentication Bypass Vulnerability. This vulnerability…
CVE-2020-15632 — CVSS 8.8 (high): This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-842 3.13B05 routers…
CVE-2025-53782 — CVSS 8.4 (high): Incorrect implementation of authentication algorithm in Microsoft Exchange Server allows an unauthorized attacker to elevate privileges…
CVE-2026-43640 — CVSS 8.1 (high): Bitwarden Server prior to v2026.4.1 does not require master-password re-authentication when retrieving or rotating an organization's SCIM…
CVE-2025-57808 — CVSS 8.1 (high): ESPHome is a system to control microcontrollers remotely through Home Automation systems. In version 2025.8.0 in the ESP-IDF platform…
CVE-2025-44557 — CVSS 8.1 (high): A state machine transition flaw in the Bluetooth Low Energy (BLE) stack of Cypress PSoC4 v3.66 allows attackers to bypass the pairing…
CVE-2026-33190 — CVSS 7.5 (high): CoreDNS is a DNS server that chains plugins. In versions prior to 1.14.3, the tsig plugin can be bypassed on non-plain-DNS transports (DoT…
CVE-2025-43727 — CVSS 7.5 (high): Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.1.0.10, LTS2024…
CVE-2025-23046 — CVSS 7.5 (high): GLPI is a free asset and IT management software package. Starting in version 9.5.0 and prior to version 10.0.18, if a "Mail servers"…
CVE-2024-3046 — CVSS 7.5 (high): In Eclipse Kura LogServlet component included in versions 5.0.0 to 5.4.1, a specifically crafted request to the servlet can allow an…
CVE-2025-43856: immich is a high performance self-hosted photo and video management solution. Prior to 1.132.0, immich is vulnerable to account hijacking…
CVE-2025-14273 — CVSS 7.2 (high): Mattermost versions 11.1.x <= 11.1.0, 11.0.x <= 11.0.5, 10.12.x <= 10.12.3, 10.11.x <= 10.11.7 with the Jira plugin enabled and Mattermost…
CVE-2025-48994: SignXML is an implementation of the W3C XML Signature standard in Python. When verifying signatures with X509 certificate validation turned…
CVE-2019-25436 — CVSS 6.5 (medium): Sricam DeviceViewer 3.12.0.1 contains a password change security bypass vulnerability that allows authenticated users to change passwords…
CVE-2025-8881 — CVSS 6.5 (medium): Inappropriate implementation in File Picker in Google Chrome prior to 139.0.7258.127 allowed a remote attacker who convinced a user to…
CVE-2024-9999 — CVSS 6.5 (medium): In WS_FTP Server versions before 8.8.9 (2022.0.9), an Incorrect Implementation of Authentication Algorithm in the Web Transfer Module…
CVE-2023-32152 — CVSS 6.5 (medium): D-Link DIR-2640 HNAP LoginPassword Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass…
CVE-2023-32148 — CVSS 6.5 (medium): D-Link DIR-2640 HNAP PrivateLogin Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass…
CVE-2022-43635 — CVSS 6.5 (medium): This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of TP-Link TL-WR940N…
CVE-2025-61783: Python Social Auth is a social authentication/registration mechanism. In versions prior to 5.6.0, upon authentication, the user could be…
CVE-2024-35190 — CVSS 5.8 (medium): Asterisk is an open source private branch exchange and telephony toolkit. After upgrade to 18.23.0, ALL unauthorized SIP requests are…
CVE-2024-8314: An Incorrect Implementation of Authentication Algorithm and Exposure of Data Element to Wrong Ses-sion vulnerability in the session…
CVE-2026-8922 — CVSS 5.4 (medium): A flaw was found in Keycloak. When both realm-level and client-level `notBefore` revocation policies are configured, Keycloak's OpenID…
CVE-2025-2475 — CVSS 5.4 (medium): Mattermost versions 10.5.x <= 10.5.1, 10.4.x <= 10.4.3, 9.11.x <= 9.11.9 fail to invalidate the cache when a user account is converted to a…
CVE-2024-56128 — CVSS 5.3 (medium): Incorrect Implementation of Authentication Algorithm in Apache Kafka's SCRAM implementation. Issue Summary: Apache Kafka's implementation…
CVE-2023-39953 — CVSS 4.8 (medium): user_oidc provides the OIDC connect user backend for Nextcloud, an open-source cloud platform. Starting in version 1.0.0 and prior to…
CVE-2026-32953 — CVSS 4.6 (medium): Tillitis TKey Client package is a Go package for a TKey client. Versions 1.2.0 and below contain a critical bug in the tkeyclient Go module…