CVE-2024-42512

HIGH Year: 2024
CVSS v3 Score
8.6
High
Weakness Type
CWE-208
View all →

Vulnerability Description

Vulnerability in the OPC UA .NET Standard Stack before 1.5.374.158 allows an unauthorized attacker to bypass application authentication when the deprecated Basic128Rsa15 security policy is enabled.

Related Vulnerabilities

CVE-2023-25529

HIGH
CVSS:8.1(High)

NVIDIA DGX H100 BMC and DGX A100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated attacker may cause a leak of another user’s session token by observing timing discrepanci...

CWE-2082023

CVE-2010-10006

HIGH
CVSS:7.5(High)

A vulnerability, which was classified as problematic, was found in michaelliao jopenid. Affected is the function getAuthentication of the file JOpenId/src/org/expressme/openid/OpenIdManager.java. The ...

CWE-2082010

CVE-2013-10006

HIGH
CVSS:7.5(High)

A vulnerability classified as problematic was found in Ziftr primecoin up to 0.8.4rc1. Affected by this vulnerability is the function HTTPAuthorized of the file src/bitcoinrpc.cpp. The manipulation of...

CWE-2082013

CVE-2021-42016

HIGH
CVSS:7.5(High)

A vulnerability has been identified in RUGGEDCOM i800, RUGGEDCOM i801, RUGGEDCOM i802, RUGGEDCOM i803, RUGGEDCOM M2100, RUGGEDCOM M2100F, RUGGEDCOM M2200, RUGGEDCOM M2200F, RUGGEDCOM M969, RUGGEDCOM M...

CWE-2082021

CVE-2022-31142

HIGH
CVSS:7.5(High)

@fastify/bearer-auth is a Fastify plugin to require bearer Authorization headers. @fastify/bearer-auth prior to versions 7.0.2 and 8.0.1 does not securely use crypto.timingSafeEqual. A malicious attac...

CWE-2082022