CWE-294 · Authentication Bypass by Capture-replay

224 CVEs classified under CWE-294 (Authentication Bypass by Capture-replay). Browse by severity and year.

Top CVEs for CWE-294
CVESeverityScorePublishedSummary
CVE-2025-49752Critical10.02025-11-20Azure Bastion Elevation of Privilege Vulnerability
CVE-2026-32987Critical9.82026-03-29OpenClaw before 2026.3.13 allows bootstrap setup codes to be replayed during device pairing verification in src/infra/device-bootstrap.ts. Attackers can verify…
CVE-2025-67135Critical9.82026-02-11Weak Security in the PF-50 1.2 keyfob of PGST PG107 Alarm System 1.25.05.hf allows attackers to compromise access control via a code replay attack.
CVE-2025-65552Critical9.82026-01-12D3D Wi-Fi Home Security System ZX-G12 v2.1.1 is vulnerable to RF replay attacks on the 433 MHz sensor communication channel. The system does not implement roll…
CVE-2024-38438Critical9.82024-07-21D-Link - CWE-294: Authentication Bypass by Capture-replay
CVE-2023-47435Critical9.82024-04-19An issue in the verifyPassword function of hexo-theme-matery v2.0.0 allows attackers to bypass authentication and access password protected pages.
CVE-2023-49231Critical9.82024-03-29An authentication bypass vulnerability was found in Stilog Visual Planning 8. It allows an unauthenticated attacker to receive an administrative API token.
CVE-2023-30909Critical9.82023-09-14A remote authentication bypass issue exists in some OneView APIs.
CVE-2023-1537Critical9.82023-03-21Authentication Bypass by Capture-replay in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-23397Critical9.82023-03-14Microsoft Outlook Elevation of Privilege Vulnerability
CVE-2022-44457Critical9.82022-11-08A vulnerability has been identified in Mendix SAML (Mendix 7 compatible) (All versions < V1.17.0), Mendix SAML (Mendix 7 compatible) (All versions >= V1.17.0 <…
CVE-2022-37011Critical9.82022-09-13A vulnerability has been identified in Mendix SAML (Mendix 7 compatible) (All versions < V1.17.0), Mendix SAML (Mendix 8 compatible) (All versions < V2.3.0), M…
CVE-2022-29334Critical9.82022-05-24An issue in H v1.0 allows attackers to bypass authentication via a session replay attack.
CVE-2022-22806Critical9.82022-03-09A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause an unauthenticated connection to the UPS when a malformed connection i…
CVE-2020-35551Critical9.82020-12-18An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) (Exynos chipsets) software. They allow attackers to conduct RPMB state-chang…
CVE-2018-19025Critical9.82020-11-02In JUUKO K-808, an attacker could specially craft a packet that encodes an arbitrary command, which could be executed on the K-808 (Firmware versions prior to…
CVE-2018-17932Critical9.82020-11-02JUUKO K-800 (Firmware versions prior to numbers ending ...9A, ...9B, ...9C, etc.) is vulnerable to a replay attack and command forgery, which could allow attac…
CVE-2019-18226Critical9.82019-10-31Honeywell equIP series and Performance series IP cameras and recorders, A vulnerability exists in the affected products where IP cameras and recorders have a p…
CVE-2018-7790Critical9.82018-08-29An Information Management Error vulnerability exists in Schneider Electric's Modicon M221 product (all references, all versions prior to firmware V1.6.2.0). Th…
CVE-2017-3191Critical9.82017-12-16D-Link DIR-130 firmware version 1.23 and DIR-330 firmware version 1.12 are vulnerable to authentication bypass of the remote login page. A remote attacker that…