CVE-2025-27695

MEDIUM Year: 2025
CVSS v3 Score
4.9
Medium
Weakness Type
CWE-290
View all →

Vulnerability Description

Dell Wyse Management Suite, versions prior to WMS 5.1 contain an Authentication Bypass by Spoofing vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Information Disclosure.

Related Vulnerabilities

CVE-2023-5616

MEDIUM
CVSS:4.9(Medium)

In Ubuntu, gnome-control-center did not properly reflect SSH remote login status when the system was configured to use systemd socket activation for openssh-server. This could unknowingly leave the lo...

CWE-2902023

CVE-2020-4421

MEDIUM
CVSS:5.0(Medium)

IBM WebSphere Application Liberty 19.0.0.5 through 20.0.0.4 could allow an authenticated user using openidconnect to spoof another users identify. IBM X-Force ID: 180084.

CWE-2902020

CVE-2022-22476

MEDIUM
CVSS:5.0(Medium)

IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.7 and Open Liberty are vulnerable to identity spoofing by an authenticated user using a specially crafted request. IBM X-Force ID: 2256...

CWE-2902022

CVE-2020-6158

MEDIUM
CVSS:4.7(Medium)

Opera Mini for Android before version 52.2 is vulnerable to an address bar spoofing attack. The vulnerability allows a malicious page to trick the browser into showing an address of a different page. ...

CWE-2902020

CVE-2021-27853

MEDIUM
CVSS:4.7(Medium)

Layer 2 network filtering capabilities such as IPv6 RA guard or ARP inspection can be bypassed using combinations of VLAN 0 headers and LLC/SNAP headers.

CWE-2902021

CVE-2021-27854

MEDIUM
CVSS:4.7(Medium)

Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using combinations of VLAN 0 headers, LLC/SNAP headers, and converting frames from Ethernet to Wifi and its reverse.

CWE-2902021