VYPR

Duo

by Cisco Systems, Inc.

CVEs (2)

  • CVE-2024-20301MedMar 6, 2024
    risk 0.40cvss 6.2epss 0.00

    A vulnerability in Cisco Duo Authentication for Windows Logon and RDP could allow an authenticated, physical attacker to bypass secondary authentication and access an affected Windows device. This vulnerability is due to a failure to invalidate locally created trusted…

  • CVE-2025-20258MedMay 21, 2025
    risk 0.35cvss 5.4epss 0.00

    A vulnerability in the self-service portal of Cisco Duo could allow an unauthenticated, remote attacker to inject arbitrary commands into emails that are sent by the service. This vulnerability is due to insufficient input validation. An attacker could exploit this…