Anavem
EnglishFrancais
Anavem
Languagefr

#authentication-bypass

9 articles

News9

Server rack with red emergency lighting and network cables in dramatic shadows
Critical
Vulnerabilities

Critical Nginx UI Flaw Enables Server Takeover Without Auth

A critical vulnerability in Nginx UI with Model Context Protocol support allows attackers to gain full server control without authentication.

April 16, 12:35 AM5 min
Server rack with red warning lights and network cables in dark room
Critical
VulnerabilitiesCVE-2026-33032

CVE-2026-33032: Critical nginx-ui Flaw Under Active Attack

A critical authentication bypass vulnerability in nginx-ui enables attackers to seize control of Nginx services through active exploitation campaigns.

April 15, 02:56 PM5 min
Server room with red emergency lighting highlighting network security equipment
Critical
Vulnerabilities

Fortinet Patches Critical FortiSandbox RCE Flaws

Fortinet released emergency patches for critical FortiSandbox vulnerabilities allowing authentication bypass and remote code execution via HTTP requests.

April 15, 11:37 AM5 min
Dark server room with red emergency lighting highlighting server racks and glowing status indicators
Critical
Vulnerabilities

Progress ShareFile RCE Flaws Enable Pre-Auth Server Takeover

Critical Progress ShareFile vulnerabilities allow attackers to chain exploits for unauthenticated remote code execution and arbitrary file uploads.

April 3, 02:12 PM5 min
Data center server rack with warning lights indicating security vulnerability
Critical
Security Updates

Cisco Patches Critical IMC Authentication Bypass Flaw

Cisco fixed multiple critical vulnerabilities including an authentication bypass in Integrated Management Controller granting admin access.

April 2, 01:01 PM4 min
Black wireless router with illuminated status lights in dark server environment
High
Vulnerabilities

TP-Link Patches Critical Router Flaws Enabling RCE

TP-Link released security updates fixing high-severity vulnerabilities that allow authentication bypass and remote code execution on popular router models.

March 27, 12:42 PM5 min
Enterprise network switch with red warning lights in dark server room
Critical
Vulnerabilities

HPE AOS-CX Flaw Lets Attackers Reset Admin Passwords

Critical HPE AOS-CX vulnerability enables remote attackers to bypass authentication and reset administrator passwords without credentials.

March 14, 11:50 AM2 min
Enterprise network switch with security warning in server room
Critical
VulnerabilitiesCVE-2025-37157, CVE-2025-37158

HPE Patches Five Critical AOS-CX Flaws: RCE, Privilege Escalation and Session Hijacking

HPE released emergency patches on March 10, 2026 for five critical and high-severity vulnerabilities in Aruba Networking AOS-CX, including two command injection flaws enabling remote code execution, an SSH privilege escalation, a web session hijacking bug, and a port ACL bypass on CX 9300 switches. Immediate patching is required for all enterprise Aruba CX deployments.

March 10, 06:30 PM2 min
WordPress admin dashboard displaying user management interface in dark cybersecurity setting
Critical
Vulnerabilities

WordPress Plugin Bug Lets Hackers Create Admin Accounts

Critical flaw in User Registration plugin affects 60,000+ WordPress sites, enabling unauthorized admin account creation.

March 5, 07:44 PM2 min