Weaknesses of type CWE-284
4,457 resultsCVE-2024-20343MEDIUMCisco IOS XR Software CLI Arbitrary File Read VulnerabilityEPSS 0.1%CVE-2026-28978HIGHA permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS TahoEPSS 0.1%CVE-2025-31216LOWThe issue was addressed with improved checks. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7. An attacker with physical acceEPSS 0.1%CVE-2026-9522MEDIUMImproper access control in the PAM account discovery feature in Devolutions Server 2026.1.19 and earlier allows an authenticated user withouEPSS 0.1%CVE-2026-20642LOWAn input validation issue was addressed. This issue is fixed in iOS 26.3 and iPadOS 26.3. A person with physical access to an iOS device mayEPSS 0.1%CVE-2026-11212MEDIUMInsufficient policy enforcement in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a maEPSS 0.1%CVE-2023-28070MEDIUM
Alienware Command Center Application, versions 5.5.43.0 and prior, contain an improper access control vulnerability. A local malicious userEPSS 0.1%CVE-2023-29242MEDIUMImproper access control for Intel(R) oneAPI Toolkits before version 2021.1 Beta 10 may allow an authenticated user to potentially enable escEPSS 0.1%CVE-2026-46772MEDIUMVulnerability in the Oracle Application Development Framework (ADF) product of Oracle Fusion Middleware (component: ADF Faces). Supported vEPSS 0.1%CVE-2026-29060MEDIUMGokapi: Privilege escalation with auth tokenEPSS 0.1%CVE-2024-27264HIGHIBM Performance Tools for i privilege escalationEPSS 0.1%CVE-2025-24323HIGHImproper access control in some firmware package and LED mode toggle tool for some Intel(R) PCIe Switch software before version MR4_1.0b1 maEPSS 0.1%CVE-2024-23351HIGHImproper Access Control in Graphics LinuxEPSS 0.1%CVE-2025-43393MEDIUMA permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Tahoe 26.1. An app may be able to breakEPSS 0.1%CVE-2023-25771MEDIUMImproper access control for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable denial of service via local acEPSS 0.1%CVE-2025-52963MEDIUMJunos OS: A low-privileged user can disable an interfaceEPSS 0.1%CVE-2025-29939MEDIUMImproper access control in secure encrypted virtualization (SEV) could allow a privileged attacker to write to the reverse map page (RMP) duEPSS 0.1%CVE-2025-30731LOWVulnerability in the Oracle Applications Technology Stack product of Oracle E-Business Suite (component: Configuration). Supported versionsEPSS 0.1%CVE-2025-43451MEDIUMA permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS Tahoe 26. An app may be able to access sensiEPSS 0.1%CVE-2026-36180MEDIUMA lack of runtime integrity in GNCC GP5 v7.1.76 allows physically-proximate attackers to bypass file system read-only protections and modifyEPSS 0.1%