Weaknesses of type CWE-284
4,459 resultsCVE-2026-23856HIGHDell iDRAC Service Module (iSM) for Windows, versions prior to 6.0.3.1, and Dell iDRAC Service Module (iSM) for Linux, versions prior to 5.4EPSS 0.1%CVE-2021-25501MEDIUMAn improper access control vulnerability in SCloudBnRReceiver in SecTelephonyProvider prior to SMR Nov-2021 Release 1 allows untrusted appliEPSS 0.1%CVE-2025-26424MEDIUMIn multiple functions of VpnManager.java, there is a possible cross-user data leak due to a logic error in the code. This could lead to locaEPSS 0.1%CVE-2022-28780MEDIUMImproper access control vulnerability in Weather prior to SMR May-2022 Release 1 allows that attackers can access location information that EPSS 0.1%CVE-2024-23360HIGHImproper Access Control in Graphics WindowsEPSS 0.1%CVE-2025-21425HIGHImproper Access Control in Automotive Linux OSEPSS 0.1%CVE-2022-33701LOWImproper access control vulnerability in KnoxCustomManagerService prior to SMR Jul-2022 Release 1 allows attacker to call PowerManaer.goToSlEPSS 0.1%CVE-2022-33714MEDIUMImproper access control vulnerability in SemWifiApBroadcastReceiver prior to SMR Aug-2022 Release 1 allows attacker to reset a setting valueEPSS 0.1%CVE-2022-33731MEDIUMImproper access control vulnerability in DesktopSystemUI prior to SMR Aug-2022 Release 1 allows attackers to enable and disable arbitrary coEPSS 0.1%CVE-2025-46589MEDIUMVulnerability of unauthorized access in the app lock module
Impact: Successful exploitation of this vulnerability will affect integrity and EPSS 0.1%CVE-2023-32479MEDIUM
Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server versions prior to 11.9.0 contain privilege esEPSS 0.1%CVE-2022-36856MEDIUMImproper access control vulnerability in Telecom application prior to SMR Sep-2022 Release 1 allows attacker to start emergency calls via unEPSS 0.1%CVE-2023-20927HIGHIn permissions of AndroidManifest.xml, there is a possible way to grant signature permissions due to a permissions bypass. This could lead tEPSS 0.1%CVE-2022-39896MEDIUMImproper access control vulnerabilities in Contacts prior to SMR Dec-2022 Release 1 allows to access sensitive information via implicit inteEPSS 0.1%CVE-2022-39898MEDIUMImproper access control vulnerability in IIccPhoneBook prior to SMR Dec-2022 Release 1 allows attackers to access some information of usim.EPSS 0.1%CVE-2022-39855MEDIUMImproper access control vulnerability in FACM application prior to SMR Oct-2022 Release 1 allows a local attacker to connect arbitrary AP anEPSS 0.1%CVE-2025-22426HIGHIn many functions of ComputerEngine.java, there is a possible way to access URIs across users due to a logic error in the code. This could lEPSS 0.1%CVE-2022-39884MEDIUMImproper access control vulnerability in IImsService prior to SMR Nov-2022 Release 1 allows local attacker to access to Call information.EPSS 0.1%CVE-2024-20036MEDIUMIn vdec, there is a possible permission bypass due to a permissions bypass. This could lead to local information disclosure with System execEPSS 0.1%CVE-2026-41704MEDIUMCompromised VM can make arbitrary blobstore deletesEPSS 0.1%