Webauthn Framwork
1 CVEs
product
Monthly
Webauthn Framework 3.3.x before 3.3.4 has Incorrect Access Control. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Authentication Bypass
Webauthn Framwork
NVD
GitHub
CVSS 3.1
9.8
EPSS
1.7%
CVE-2021-38299
PHP
EPSS 2%
CVSS 9.8
CRITICAL
PATCH
Act Now
Webauthn Framework 3.3.x before 3.3.4 has Incorrect Access Control. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Authentication Bypass
Webauthn Framwork
NVD
GitHub