Skip to main content

Empowerid

2 CVEs product

Monthly

CVE-2023-40260 CRITICAL Act Now

EmpowerID before 7.205.0.1 allows an attacker to bypass an MFA (multi factor authentication) requirement if the first factor (username and password) is known, because the first factor is sufficient. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Empowerid
NVD
CVSS 3.1
9.1
EPSS
0.5%
CVE-2023-4177 MEDIUM This Month

A vulnerability was found in EmpowerID up to 7.205.0.0. Rated medium severity (CVSS 5.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Empowerid
NVD VulDB
CVSS 3.1
5.7
EPSS
0.2%
EPSS 1% CVSS 9.1
CRITICAL Act Now

EmpowerID before 7.205.0.1 allows an attacker to bypass an MFA (multi factor authentication) requirement if the first factor (username and password) is known, because the first factor is sufficient. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Empowerid
NVD
EPSS 0% CVSS 5.7
MEDIUM This Month

A vulnerability was found in EmpowerID up to 7.205.0.0. Rated medium severity (CVSS 5.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Empowerid
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy