Revpi Status
Monthly
Critical remote authentication bypass vulnerability affecting an unspecified software package, exploitable through improper type conversion handling (CWE-704). An unauthenticated network attacker can bypass authentication controls without user interaction to achieve complete device compromise including confidentiality, integrity, and availability violations. The vulnerability carries a maximum CVSS 3.1 score of 9.8 with network accessibility and low attack complexity, indicating high real-world exploitability risk; without access to KEV/EPSS data or POC confirmation, exploitation likelihood cannot be definitively assessed but the attack vector and complexity profile suggests active exploitation potential.
Critical remote authentication bypass vulnerability affecting an unspecified software package, exploitable through improper type conversion handling (CWE-704). An unauthenticated network attacker can bypass authentication controls without user interaction to achieve complete device compromise including confidentiality, integrity, and availability violations. The vulnerability carries a maximum CVSS 3.1 score of 9.8 with network accessibility and low attack complexity, indicating high real-world exploitability risk; without access to KEV/EPSS data or POC confirmation, exploitation likelihood cannot be definitively assessed but the attack vector and complexity profile suggests active exploitation potential.