Unrated severityNVD Advisory· Published Jul 3, 2014· Updated May 6, 2026

CVE-2014-4168

Description

(1) iodined.c and (2) user.c in iodine before 0.7.0 allows remote attackers to bypass authentication by continuing execution after an error has been triggering.

Affected products

Kryo/Iodine12 versions
cpe:2.3:a:kryo:iodine:0.3.0:*:*:*:*:*:*:*+ 11 more
- cpe:2.3:a:kryo:iodine:0.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:kryo:iodine:0.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:kryo:iodine:0.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:kryo:iodine:0.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:kryo:iodine:0.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:kryo:iodine:0.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:kryo:iodine:0.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:kryo:iodine:0.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:kryo:iodine:0.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:kryo:iodine:0.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:kryo:iodine:0.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:kryo:iodine:*:rc1:*:*:*:*:*:*range: <=0.6.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000