VYPR

Duo Authentication for Windows Logon and RDP

by Cisco Systems, Inc.

CVEs (4)

  • CVE-2024-20292Mar 6, 2024
    risk 0.00cvss epss 0.00

    A vulnerability in the logging component of Cisco Duo Authentication for Windows Logon and RDP could allow an authenticated, local attacker to view sensitive information in clear text on an affected system. This vulnerability is due to improper storage of an unencrypted…

  • CVE-2024-20301Mar 6, 2024
    risk 0.00cvss epss 0.00

    A vulnerability in Cisco Duo Authentication for Windows Logon and RDP could allow an authenticated, physical attacker to bypass secondary authentication and access an affected Windows device. This vulnerability is due to a failure to invalidate locally created trusted…

  • CVE-2023-20123Apr 5, 2023
    risk 0.00cvss epss 0.00

    A vulnerability in the offline access mode of Cisco Duo Two-Factor Authentication for macOS and Duo Authentication for Windows Logon and RDP could allow an unauthenticated, physical attacker to replay valid user session credentials and gain unauthorized access to an affected…

  • CVE-2020-3427Oct 14, 2020
    risk 0.00cvss epss 0.00

    The Windows Logon installer prior to 4.1.2 did not properly validate file installation paths. This allows an attacker with local user privileges to coerce the installer to write to arbitrary privileged directories. If successful, an attacker can manipulate files used by Windows…