Weaknesses of type CWE-284
4,356 resultsCVE-2020-9668HIGHAGSService program mishandling symbolic linksEPSS 1.6%CVE-2024-43594HIGHMicrosoft System Center Elevation of Privilege VulnerabilityEPSS 1.6%CVE-2024-49068HIGHMicrosoft SharePoint Elevation of Privilege VulnerabilityEPSS 1.6%CVE-2018-7520—An improper access control vulnerability has been identified in Geutebruck G-Cam/EFD-2250 Version 1.12.0.4 and Topline TopFD-2125 Version 3.EPSS 1.6%CVE-2014-2365—Advantech WebAccess Improper Access ControlEPSS 1.6%CVE-2019-1686MEDIUMCisco ASR 9000 Series Aggregation Services Routers ACL Bypass VulnerabilityEPSS 1.6%CVE-2019-6554—Advantech WebAccess/SCADA, Versions 8.3.5 and prior. An improper access control vulnerability may allow an attacker to cause a denial-of-serEPSS 1.6%CVE-2021-24583—Timetable and Event Schedule by MotoPress < 2.4.2 - Unauthorised Event TimeSlot DeletionEPSS 1.6%CVE-2024-21302MEDIUMWindows Secure Kernel Mode Elevation of Privilege VulnerabilityEPSS 1.6%CVE-2023-24022CRITICALHard Coded Credential Crypt VulnerabilityEPSS 1.6%CVE-2015-9236—Hapi versions less than 11.0.0 implement CORS incorrectly and allowed for configurations that at best returned inconsistent headers and at wEPSS 1.5%CVE-2020-8139—A missing access control check in Nextcloud Server < 18.0.1, < 17.0.4, and < 16.0.9 causes hide-download shares to be downloadable when appeEPSS 1.5%CVE-2026-24302HIGHAzure Arc Elevation of Privilege VulnerabilityEPSS 1.5%CVE-2019-14902MEDIUMThere is an issue in all samba 4.11.x versions before 4.11.5, all samba 4.10.x versions before 4.10.12 and all samba 4.9.x versions before 4EPSS 1.5%CVE-2018-1080HIGHDogtag PKI, through version 10.6.1, has a vulnerability in AAclAuthz.java that, under certain configurations, causes the application of ACL EPSS 1.5%CVE-2025-24999HIGHMicrosoft SQL Server Elevation of Privilege VulnerabilityEPSS 1.5%CVE-2025-21301MEDIUMWindows Geolocation Service Information Disclosure VulnerabilityEPSS 1.5%CVE-2024-38061HIGHDCOM Remote Cross-Session Activation Elevation of Privilege VulnerabilityEPSS 1.5%CVE-2019-10938—A vulnerability has been identified in SIPROTEC 5 devices with CPU variants CP200 (All versions < V7.59), SIPROTEC 5 devices with CPU varianEPSS 1.5%CVE-2025-48734HIGHApache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum's declaredClass property by defaultEPSS 1.5%