CWE-290— Authentication Bypass by Spoofing
This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.— MITRE CWE catalog
601 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-290page 10 of 13
- CVE-2025-48027MEDIUMCVSS 5.4EG 5.42025-05-15
The HttpAuth plugin in pGina.Fork through 3.9.9.12 allows authentication bypass when an adversary controls DNS resolution for pginaloginserver.
- CVE-2025-48906HIGHCVSS 8.8EG 8.82025-06-06
Authentication bypass vulnerability in the DSoftBus module Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-48937MEDIUMCVSS 4.9EG 4.92025-06-10
matrix-rust-sdk is an implementation of a Matrix client-server library in Rust. matrix-sdk-crypto since version 0.8.0 and up to 0.11.0 does not correctly validate the sender of an encrypted event. Accordingly, a malicious homeserver operat…
- CVE-2025-49002CRITICALCVSS 9.8EG 9.82025-06-03
DataEase is an open source business intelligence and data visualization tool. Versions prior to version 2.10.10 have a flaw in the patch for CVE-2025-32966 that allow the patch to be bypassed through case insensitivity because INIT and RUN…
- CVE-2025-49004HIGHCVSS 7.5EG 7.52025-06-09
Caido is a web security auditing toolkit. Prior to version 0.48.0, due to the lack of protection for DNS rebinding, Caido can be loaded on an attacker-controlled domain. This allows a malicious website to hijack the authentication flow of …
- CVE-2025-50328HIGHCVSS 7.3EG 7.32026-04-29
A vulnerability in B1 Free Archiver v1.5.86 allows files extracted from downloaded archives to bypass Windows Mark of the Web (MotW) protections. When an archive is downloaded from the internet and extracted using B1 Free Archiver, the sof…
- CVE-2025-50454MEDIUMCVSS 6.5EG 6.52025-08-05
An Authentication Bypass vulnerability in Blue Access' Cobalt X1 thru 02.000.187 allows an unauthorized attacker to log into the application as an administrator without valid credentials.
- CVE-2025-5067MEDIUMCVSS 5.4EG 5.42025-05-27
Inappropriate implementation in Tab Strip in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
- CVE-2025-54288MEDIUMCVSS 6.8EG 6.82025-10-02
Information Spoofing in devLXD Server in Canonical LXD versions 4.0 and above on Linux container platforms allows attackers with root privileges within any container to impersonate other containers and obtain their metadata, configuration,…
- CVE-2025-54305HIGHCVSS 7.8EG 7.82025-12-04
An issue was discovered in the Thermo Fisher Torrent Suite Django application 5.18.1. One of the middlewares included in this application, LocalhostAuthMiddleware, authenticates users as ionadmin if the REMOTE_ADDR property in request.META…
- CVE-2025-54576CRITICALCVSS 9.1EG 9.12025-07-30
OAuth2-Proxy is an open-source tool that can act as either a standalone reverse proxy or a middleware component integrated into existing reverse proxy or load balancer setups. In versions 7.10.0 and below, oauth2-proxy deployments are vuln…
- CVE-2025-5605MEDIUMCVSS 4.3EG 4.32025-10-24
An authentication bypass vulnerability exists in the Management Console of multiple WSO2 products. A malicious actor with access to the console can manipulate the request URI to bypass authentication and access certain restricted resources…
- CVE-2025-56449HIGHCVSS 8.2EG 8.22025-09-29
A security vulnerability was identified in Obsidian Scheduler's REST API 5.0.0 thru 6.3.0. If an account is locked out due to not enrolling in MFA (e.g. after the 7-day enforcement window), the REST API still allows the use of Basic Authen…
- CVE-2025-56608MEDIUMCVSS 4.2EG 4.22025-09-03
The SourceCodester Android application "Corona Virus Tracker App India" 1.0 uses MD5 for digest authentication in `OkHttpClientWrapper.java`. The `handleDigest()` function employs `MessageDigest.getInstance("MD5")` to hash credentials. MD5…
- CVE-2025-56689MEDIUMCVSS 4.6EG 4.62025-09-03
One Identity by Quest Safeguard for Privileged Passwords Appliance 7.5.1.20903 is vulnerable to One Time Password (OTP)/Multifactor Authentication (MFA) bypass using response manipulation. An attacker who intercepts or captures a valid OTP…
- CVE-2025-56800MEDIUMCVSS 5.1EG 5.12025-10-21
Reolink desktop application 8.18.12 contains a vulnerability in its local authentication mechanism. The application implements lock screen password logic entirely on the client side using JavaScript within an Electron resource file. Becaus…
- CVE-2025-58595MEDIUMCVSS 5.3EG 9.12025-11-06
Authentication Bypass by Spoofing vulnerability in Saad Iqbal All In One Login change-wp-admin-login allows Identity Spoofing.This issue affects All In One Login: from n/a through <= 2.0.8.
- CVE-2025-59154MEDIUMCVSS 5.9EG 5.92025-09-15
Openfire is an XMPP server licensed under the Open Source Apache License. Openfire’s SASL EXTERNAL mechanism for client TLS authentication contains a vulnerability in how it extracts user identities from X.509 certificates. Instead of pa…
- CVE-2025-59385CRITICALCVSS 9.8EG 9.82025-12-16
An authentication bypass by spoofing vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to access resources which are not otherwise accessible without p…
- CVE-2025-59501MEDIUMCVSS 4.8EG 4.82025-10-31
Authentication bypass by spoofing in Microsoft Configuration Manager allows an authorized attacker to perform spoofing over an adjacent network.
- CVE-2025-59699MEDIUMCVSS 6.8EG 6.82025-12-02
Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a physically proximate attacker to escalate privileges by booting from a USB device with a valid root filesystem. This occurs because of insecure defa…
- CVE-2025-59706CRITICALCVSS 9.8EG 9.82026-03-25
In N2W before 4.3.2 and 4.4.0 before 4.4.1, improper validation of API request parameters enables remote code execution.
- CVE-2025-59707CRITICALCVSS 9.8EG 9.82026-03-25
In N2W before 4.3.2 and 4.4.x before 4.4.1, there is potential remote code execution and account credentials theft because of a spoofing vulnerability.
- CVE-2025-59802HIGHCVSS 7.5EG 7.52025-12-11
Foxit PDF Editor and Reader before 2025.2.1 allow signature spoofing via OCG. When Optional Content Groups (OCG) are supported, the state property of an OCG is runtime-only and not included in the digital signature computation buffer. An a…
- CVE-2025-59956MEDIUMCVSS 6.5EG 6.52025-09-30
AgentAPI is an HTTP API for Claude Code, Goose, Aider, Gemini, Amp, and Codex. Versions 0.3.3 and below are susceptible to a client-side DNS rebinding attack when hosted over plain HTTP on localhost. An attacker can gain access to the /mes…
- CVE-2025-60538MEDIUMCVSS 6.5EG 6.52026-01-09
A lack of rate limiting in the login page of shiori v1.7.4 and below allows attackers to bypass authentication via a brute force attack.
- CVE-2025-60868MEDIUMCVSS 6.5EG 6.52025-10-10
The Alt Redirect 1.6.3 addon for Statamic fails to consistently strip query string parameters when the "Query String Strip" feature is enabled. Case variations, encoded keys, and duplicates are not removed, allowing attackers to bypass san…
- CVE-2025-61778CRITICALCVSS 9.3EG 9.32025-10-06
Akka.NET is a .NET port of the Akka project from the Scala / Java community. In all versions of Akka.Remote from v1.2.0 to v1.5.51, TLS could be enabled via our `akka.remote.dot-netty.tcp` transport and this would correctly enforce private…
- CVE-2025-6188HIGHCVSS 7.5EG 7.52025-08-25
On affected platforms running Arista EOS, maliciously formed UDP packets with source port 3503 may be accepted by EOS. UDP Port 3503 is associated with LspPing Echo Reply. This can result in unexpected behaviors, especially for UDP based s…
- CVE-2025-62235HIGHCVSS 8.1EG 8.12026-01-10
Authentication Bypass by Spoofing vulnerability in Apache NimBLE. Receiving specially crafted Security Request could lead to removal of original bond and re-bond with impostor. This issue affects Apache NimBLE: through 1.8.0. Users are …
- CVE-2025-65046LOWCVSS 3.1EG 3.12025-12-18
Microsoft Edge (Chromium-based) Spoofing Vulnerability
- CVE-2025-66270MEDIUMCVSS 4.7EG 4.72025-12-05
The KDE Connect protocol 8 before 2025-11-28 does not correlate device IDs across two packets. This affects KDE Connect before 25.12 on desktop, KDE Connect before 0.5.4 on iOS, KDE Connect before 1.34.4 on Android, GSConnect before 68, an…
- CVE-2025-66507HIGHCVSS 7.5EG 7.52025-12-09
1Panel is an open-source, web-based control panel for Linux server management. Versions 2.0.13 and below allow an unauthenticated attacker to disable CAPTCHA verification by abusing a client-controlled parameter. Because the server previou…
- CVE-2025-66508MEDIUMCVSS 6.5EG 6.52025-12-09
1Panel is an open-source, web-based control panel for Linux server management. Versions 2.0.14 and below use Gin's default configuration which trusts all IP addresses as proxies (TrustedProxies = 0.0.0.0/0), allowing any client to spoof th…
- CVE-2025-66570CRITICALCVSS 9.8EG 10.02025-12-05
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.27.0, a vulnerability allows attacker-controlled HTTP headers to influence server-visible metadata, logging, and authorization decisions. An attac…
- CVE-2025-67298HIGHCVSS 8.1EG 8.12026-03-11
An issue in ClasroomIO before v.0.2.6 allows a remote attacker to escalate privileges via the endpoints /api/verify and /rest/v1/profile
- CVE-2025-68644HIGHCVSS 7.4EG 7.42025-12-21
Yealink RPS before 2025-06-27 allows unauthorized access to information, including AutoP URL addresses. This was fixed by deploying an enhanced authentication mechanism through a security update to all cloud instances.
- CVE-2025-69203MEDIUMCVSS 6.3EG 6.32026-01-01
Signal K Server is a server application that runs on a central hub in a boat. Versions prior to 2.19.0 of the access request system have two related features that when combined by themselves and with an information disclosure vulnerability…
- CVE-2025-69258CRITICALCVSS 9.8EG 9.82026-01-08
A LoadLibraryEX vulnerability in Trend Micro Apex Central could allow an unauthenticated remote attacker to load an attacker-controlled DLL into a key executable, leading to execution of attacker-supplied code under the context of SYSTEM o…
- CVE-2025-69401HIGHCVSS 7.5EG 7.52026-02-20
Authentication Bypass by Spoofing vulnerability in mdalabar WooODT Lite byconsole-woo-order-delivery-time allows Identity Spoofing.This issue affects WooODT Lite: from n/a through <= 2.5.2.
- CVE-2025-71056HIGHCVSS 8.1EG 9.12026-02-23
Improper session management in GCOM EPON 1GE ONU version C00R371V00B01 allows attackers to execute a session hijacking attack via spoofing the IP address of an authenticated user.
- CVE-2025-7448HIGHCVSS 8.6EG 8.62025-09-12
Wi-SUN unexpected 4- Way Handshake packet receptions may lead to predictable keys and potentially leading to Man in the middle (MitM) attack
- CVE-2025-8853CRITICALCVSS 9.8EG 9.82025-08-11
Official Document Management System developed by 2100 Technology has an Authentication Bypass vulnerability, allowing unauthenticated remote attackers to obtain any user's connection token and use it to log into the system as that user.
- CVE-2025-9265CRITICALCVSS 10.0EG 10.02025-10-13
A broken authorization vulnerability in Kiloview NDI N30 allows a remote unauthenticated attacker to deactivate user verification, giving them access to state changing actions that should only be initiated by administratorsThis issue affec…
- CVE-2026-0385MEDIUMCVSS 5.0EG 5.02026-03-16
Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability
- CVE-2026-0834HIGHCVSS 8.8EG 8.82026-01-21
Logic vulnerability in TP-Link Archer C20 v5, 6.0, Archer AX53 v1.0 and TL-WR841N v13 (TDDP module) allows unauthenticated adjacent attackers to execute administrative commands including factory reset and device reboot without credentials.…
- CVE-2026-0890MEDIUMCVSS 5.4EG 6.52026-01-13
Spoofing issue in the DOM: Copy & Paste and Drag & Drop component. This vulnerability was fixed in Firefox 147, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.
- CVE-2026-11001MEDIUMCVSS 6.5EG 6.52026-06-04
Inappropriate implementation in Payments in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: …
- CVE-2026-11019MEDIUMCVSS 6.5EG 6.52026-06-04
Inappropriate implementation in Payments in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform domain spoofing via a crafted HTML page. (Chromium security severity:…
- CVE-2026-13207HIGHCVSS 7.5EG 7.52026-06-30
FUXA versions 1.3.1 and prior contain an authentication bypass vulnerability via dot-segment path normalization in the REST API. The API router fails to normalize dot-segment sequences before applying authentication middleware, allowing un…
Map vulnerabilities like CWE-290 to your infrastructure
EchelonGraph correlates every CVE — across CWE-290 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →