Primary

Context

Videx CyberAudit-Web Authentication Bypass Vulnerability

Vulnerability

A logic flaw in Videx's CyberAudit-Web prior to version 9.8.11 has been identified, allowing authentication bypass. This vulnerability enables an attacker to create a valid session without credentials. Videx has released a patch for this vulnerability, available to all CyberAudit-Web instances, including those that are End of Maintenance. Users needing assistance with the patch can contact Videx support.

Impact

Exploitation of this vulnerability allows for authentication bypass, enabling unauthorized access to the application and its functionalities.

Remediation

Users are advised to update to the patched version of CyberAudit-Web. The patch has been made available to all instances, including those that are End of Maintenance.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

1.4

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

1.4

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Videx CyberAudit-Web Authentication Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating