CVEs classified under CWE-305, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2025-4320 — CVSS 10.0 (critical): Authentication Bypass by Primary Weakness, Weak Password Recovery Mechanism for Forgotten Password vulnerability in Birebirsoft Software…
CVE-2025-24522 — CVSS 10.0 (critical): KUNBUS Revolution Pi OS Bookworm 01/2025 is vulnerable because authentication is not configured by default for the Node-RED server. This…
CVE-2024-1403 — CVSS 10.0 (critical): In OpenEdge Authentication Gateway and AdminServer prior to 11.7.19, 12.2.14, 12.8.1 on all platforms supported by the OpenEdge product, an…
CVE-2026-25555 — CVSS 9.8 (critical): OpenBullet2 through version 0.3.2 contains an authentication bypass vulnerability in the API key authentication middleware that allows…
CVE-2026-4670 — CVSS 9.8 (critical): Authentication bypass by primary weakness vulnerability in Progress Software MOVEit Automation allows Authentication Bypass. This issue…
CVE-2026-30849 — CVSS 9.8 (critical): Mantis Bug Tracker (MantisBT) is an open source issue tracker. Versions prior to 2.28.1 running on MySQL family databases are affected by…
CVE-2025-13915 — CVSS 9.8 (critical): IBM API Connect 10.0.8.0 through 10.0.8.5, and 10.0.11.0 could allow a remote attacker to bypass authentication mechanisms and gain…
CVE-2025-41733 — CVSS 9.8 (critical): The commissioning wizard on the affected devices does not validate if the device is already initialized. An unauthenticated remote attacker…
CVE-2025-36386 — CVSS 9.8 (critical): IBM Maximo Application Suite 9.0.0 through 9.0.15 and 9.1.0 through 9.1.4 could allow a remote attacker to bypass authentication mechanisms…
CVE-2025-53826 — CVSS 9.8 (critical): File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename, and…
CVE-2025-46801 — CVSS 9.8 (critical): Pgpool-II provided by PgPool Global Development Group contains an authentication bypass by primary weakness vulnerability. if the…
CVE-2025-32011 — CVSS 9.8 (critical): KUNBUS PiCtory versions 2.5.0 through 2.11.1 have an authentication bypass vulnerability where a remote attacker can bypass authentication…
CVE-2023-41920 — CVSS 9.8 (critical): The vulnerability allows attackers access to the root account without having to authenticate. Specifically, if the device is configured…
CVE-2023-6153 — CVSS 9.8 (critical): Authentication Bypass by Primary Weakness vulnerability in TeoSOFT Software TeoBASE allows Authentication Bypass. This issue affects…
CVE-2024-1202 — CVSS 9.8 (critical): Authentication Bypass by Primary Weakness vulnerability in XPodas Octopod allows Authentication Bypass. This issue affects Octopod: before…
CVE-2022-2651 — CVSS 9.8 (critical): Authentication Bypass by Primary Weakness in GitHub repository bookwyrm-social/bookwyrm prior to 0.4.5.
CVE-2020-15787 — CVSS 9.8 (critical): A vulnerability has been identified in SIMATIC HMI Unified Comfort Panels (All versions <= V16). Affected devices insufficiently validate…
CVE-2026-28536 — CVSS 9.6 (critical): Authentication bypass vulnerability in the device authentication module. Impact: Successful exploitation of this vulnerability will affect…
CVE-2024-49587 — CVSS 9.1 (critical): Glutton V1 service endpoints were exposed without any authentication on Gotham stacks, this could have allowed users that did not have any…
CVE-2025-68435 — CVSS 9.1 (critical): Zerobyte is a backup automation tool Zerobyte versions prior to 0.18.5 and 0.19.0 contain an authentication bypass vulnerability where…
CVE-2025-47776 — CVSS 9.1 (critical): Mantis Bug Tracker (MantisBT) is an open source issue tracker. Due to incorrect use of loose (==) instead of strict (===) comparison in the…
CVE-2024-12802 — CVSS 9.1 (critical): SSL-VPN MFA Bypass in SonicWALL SSL-VPN can arise in specific cases due to the separate handling of UPN (User Principal Name) and SAM…
CVE-2023-20154 — CVSS 9.1 (critical): A vulnerability in the external authentication mechanism of Cisco Modeling Labs could allow an unauthenticated, remote attacker to access…
CVE-2026-10539 — CVSS 9.0 (critical): A Control-M/Server communication command does not sufficiently filter or sanitize user-supplied input. Under certain conditions, this issue…
CVE-2026-41052 — CVSS 8.8 (high): Improper privilege handling could be used by users with Project Owner role to escalate privileges, in Rancher versions 2.14 before 2.14.2…
CVE-2026-3047 — CVSS 8.8 (high): A flaw was found in org.keycloak.broker.saml. When a disabled Security Assertion Markup Language (SAML) client is configured as an Identity…
CVE-2026-0869 — CVSS 8.8 (high): Authentication bypass in Brocade ASCG 3.4.0 Could allow an unauthorized user to perform ASCG operations related to Brocade Support…
CVE-2024-7557 — CVSS 8.8 (high): A vulnerability was found in OpenShift AI that allows for authentication bypass and privilege escalation across models within the same…
CVE-2023-36497 — CVSS 8.8 (high): Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3 could allow a…
CVE-2020-10923 — CVSS 8.8 (high): This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700 V1.0.4.84_10.0.58…
CVE-2025-4994: The SafeLine SL6 and SL6+ devices integrated into elevator emergency intercom systems are vulnerable to an authentication bypass. This…
CVE-2024-10082 — CVSS 8.7 (high): CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy. Authentication…
CVE-2026-2652 — CVSS 8.6 (high): A vulnerability in mlflow/mlflow versions 3.9.0 and earlier allows unauthenticated access to certain FastAPI routes when the server is…
CVE-2026-6266 — CVSS 8.3 (high): A flaw was found in the AAP gateway. The user auto-link strategy, introduced in AAP 2.6, automatically links an external Identity Provider…
CVE-2025-54622 — CVSS 8.3 (high): Binding authentication bypass vulnerability in the devicemanager module. Impact: Successful exploitation of this vulnerability may affect…
CVE-2025-31965 — CVSS 8.2 (high): Improper access restrictions in HCL BigFix Remote Control Server WebUI (versions 10.1.0.0248 and lower) allow non-admin users to view…
CVE-2025-41450 — CVSS 8.2 (high): Improper Authentication vulnerability in Danfoss AKSM8xxA Series.This issue affects Danfoss AK-SM 8xxA Series prior to version 4.2
CVE-2026-33496 — CVSS 8.1 (high): ORY Oathkeeper is an Identity & Access Proxy (IAP) and Access Control Decision API that authorizes HTTP requests based on sets of Access…
CVE-2026-22153 — CVSS 8.1 (high): An Authentication Bypass by Primary Weakness vulnerability [CWE-305] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4 may allow an…
CVE-2024-12776 — CVSS 8.1 (high): In langgenius/dify v0.10.1, the `/forgot-password/resets` endpoint does not verify the password reset code, allowing an attacker to reset…
CVE-2024-51738 — CVSS 8.1 (high): Sunshine is a self-hosted game stream host for Moonlight. In 0.23.1 and earlier, Sunshine's pairing protocol implementation does not…
CVE-2026-41054 — CVSS 7.8 (high): In `src/havegecmd.c`, the `socket_handler` function performs a credential check on the abstract UNIX socket (`\0/sys/entropy/haveged`)…
CVE-2024-10394 — CVSS 7.8 (high): A local user can bypass the OpenAFS PAG (Process Authentication Group) throttling mechanism in Unix clients, allowing the user to create a…
CVE-2024-20015 — CVSS 7.8 (high): In telephony, there is a possible escalation of privilege due to a permissions bypass. This could lead to local escalation of privilege…