Threats Tagged 'cwe-424'
View all threats tagged with 'cwe-424'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cwe-424'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-54423: CWE-424 Improper Protection of Alternate Path in OpenStack IronicCVE-2026-54423 0 In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management interface can maliciously use the send_raw step to send arbitrary IPMI commands to a node, bypassing Ironic's access control. Join the discussion | CVE Database V5 | 07/10/2026, 03:10:54 UTC Added: 07/10/2026, 03:48:18 UTC |
CVE-2026-0268: CWE-424 Improper Protection of Alternate Path in Palo Alto Networks Prisma Access AgentCVE-2026-0268 0 A security control bypass vulnerability in Prisma Access Agent for Linux allows a local attacker to route network traffic outside the VPN tunnel. This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS. Join the discussion | CVE Database V5 | 06/10/2026, 20:40:11 UTC Added: 06/10/2026, 20:59:14 UTC |
Showing 1 to 2 of 2 results