CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-7292

VASCO IDENTIKEY Authentication Server (IAS) 3.4.x allows remote authenticated users to bypass Active Directory (AD) authentication by entering only a DIGIPASS one-time password, instead of the intended combination of this one-time password and a multiple-time AD password.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 45.8%

CVSS Severity

CVSS v2 Score 3.5

References

http://www.kb.cert.org/vuls/id/612076
http://www.kb.cert.org/vuls/id/612076

Products affected by CVE-2013-7292

Vasco » Identikey Authentication Server » Version: 3.4

cpe:2.3:a:vasco:identikey_authentication_server:3.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-7292

Products

Pricing

Contact Us