VYPR

Duo Authentication Proxy

by Cisco Systems, Inc.

CVEs (3)

  • CVE-2025-20345MedAug 20, 2025
    risk 0.32cvss 4.9epss 0.00

    A vulnerability in the debug logging function of Cisco Duo Authentication Proxy could allow an authenticated, high-privileged, remote attacker to view sensitive information in a system log file. This vulnerability is due to insufficient masking of sensitive information before…

  • CVE-2023-20207Jul 12, 2023
    risk 0.00cvss epss 0.00

    A vulnerability in the logging component of Cisco Duo Authentication Proxy could allow an authenticated, remote attacker to view sensitive information in clear text on an affected system. This vulnerability exists because certain unencrypted credentials are stored. An…

  • CVE-2021-1492Mar 25, 2021
    risk 0.00cvss epss 0.00

    The Duo Authentication Proxy installer prior to 5.2.1 did not properly validate file installation paths. This allows an attacker with local user privileges to coerce the installer to write to arbitrary privileged directories. If successful, an attacker can manipulate files used…