CVE-2024-8273
- EPSS 0.1%
- Veröffentlicht 11.12.2025 16:29:32
- Zuletzt bearbeitet 19.02.2026 16:57:34
Authentication Bypass by Spoofing vulnerability in HYPR Server allows Identity Spoofing.This issue affects Server: before 10.1.
CVE-2023-1837
- EPSS 0.06%
- Veröffentlicht 23.05.2023 19:15:09
- Zuletzt bearbeitet 21.11.2024 07:39:59
Missing Authentication for critical function vulnerability in HYPR Server allows Authentication Bypass when using Legacy APIs.This issue affects HYPR Server: before 8.0 (with enabled Legacy APIs)
CVE-2022-2192
- EPSS 0.68%
- Veröffentlicht 19.07.2022 15:15:08
- Zuletzt bearbeitet 21.11.2024 07:00:30
Forced Browsing vulnerability in HYPR Server version 6.10 to 6.15.1 allows remote attackers with a valid one-time recovery token to elevate privileges via path tampering in the Magic Link page. This issue affects: HYPR Server versions later than 6.10...
CVE-2022-2193
- EPSS 0.7%
- Veröffentlicht 19.07.2022 15:15:08
- Zuletzt bearbeitet 21.11.2024 07:00:31
Insecure Direct Object Reference vulnerability in HYPR Server before version 6.14.1 allows remote authenticated attackers to add a FIDO2 authenticator to arbitrary accounts via parameter tampering in the Device Manager page. This issue affects: HYPR ...