Safeguard
Tag

authentication-bypass

Safeguard articles tagged "authentication-bypass" — guides, analysis, and best practices for software supply chain and application security.

22 articles

Application Security

SAML SSO vulnerabilities: signature wrapping and assertion replay explained

A 2024 ruby-saml flaw (CVE-2024-45409, CVSS 9.8) let attackers forge SAML assertions and log in as any user, including admins — seven years after the same bug class was first disclosed.

Jul 8, 20266 min read
Vulnerability Analysis

F5 BIG-IP CVE-2022-1388 Explained: The iControl REST Authentication Bypass

CVE-2022-1388 is an authentication bypass in the F5 BIG-IP iControl REST interface that leads to unauthenticated remote code execution, rated CVSS 9.8. Here is the timeline, root cause, and patched versions.

Jul 6, 20266 min read
Vulnerability Analysis

PaperCut CVE-2023-27350 Explained: Auth Bypass to Unauthenticated RCE

CVE-2023-27350 is an authentication bypass in PaperCut MF and NG that hands an attacker admin access and remote code execution, rated CVSS 9.8. Here is the timeline, root cause, and how to remediate.

Jul 2, 20265 min read
Vulnerabilities

Check Point VPN Zero-Day CVE-2026-50751: Auth Bypass Under Active Exploitation

Check Point's CVE-2026-50751 lets an attacker dictate how hard the gateway checks them — and walk in without a password. It is rated CVSS 9.3, exploited since early May 2026, and already tied to a Qilin ransomware affiliate.

Jun 9, 20266 min read
Vulnerability Analysis

Palo Alto PAN-OS CVE-2026-0265: CAS Signature-Verification Auth Bypass (May 2026)

Palo Alto disclosed CVE-2026-0265 on May 13, 2026, a cryptographic-signature-verification flaw in Cloud Authentication Service that bypasses PAN-OS authentication. Researchers claim live GlobalProtect portal bypasses. Full analysis.

May 15, 202612 min read
Vulnerability Analysis

MCPwn (CVE-2026-33032): One Missing Auth Check Turned nginx-ui's MCP Endpoint Into Unauthenticated RCE

nginx-ui added MCP support and split it across two HTTP routes. One route shipped without the auth middleware. The result is a CVSS 9.8 unauthenticated takeover, actively exploited, fixed with 27 characters of code.

May 4, 20269 min read
Vulnerability Analysis

Authentication bypass vulnerabilities explained

Authentication bypass flaws let attackers skip login entirely. See how CVE-2022-40684, CVE-2023-22515, and CVE-2021-40539 were exploited and prevented.

Dec 9, 20257 min read
Vulnerability Analysis

JWT algorithm confusion / none-algorithm bypass explained

How attackers forge JWTs via RS256/HS256 key confusion and the alg:none bypass, with real CVEs, detection steps, and defenses.

Dec 4, 20257 min read
DevSecOps

TeamCity Authentication Bypass Exploited by Nation-State ...

A critical TeamCity authentication bypass, CVE-2023-42793, let APT29 and North Korean hackers seize build servers for supply chain attacks.

Nov 25, 20257 min read
DevSecOps

TeamCity Authentication Bypass Enabling Admin Account Cre...

CVE-2024-27198 lets unauthenticated attackers bypass TeamCity login and create admin accounts, with active exploitation and ransomware activity observed.

Nov 25, 20257 min read
Vulnerability Analysis

SaltStack Authentication Bypass Behind Mass Salt-Master E...

CVE-2020-11651 let unauthenticated attackers hijack Salt masters, triggering mass exploitation within days of disclosure. Here is what happened and how to fix it.

Nov 23, 20257 min read
Vulnerability Analysis

CVE-2018-7750: Authentication bypass in paramiko SSH serv...

CVE-2018-7750 lets attackers bypass authentication on Paramiko SSH servers using interactive auth by forging a success message. Impact, timeline, and fixes inside.

Oct 2, 20258 min read
authentication-bypass — Safeguard Blog