Weaknesses of type CWE-284
4,373 resultsCVE-2020-3413MEDIUMCisco Webex Meetings Scheduled Meeting Template Deletion VulnerabilityEPSS 0.7%CVE-2024-28922MEDIUMSecure Boot Security Feature Bypass VulnerabilityEPSS 0.7%CVE-2020-3412MEDIUMCisco Webex Meetings Scheduled Meeting Template Creation VulnerabilityEPSS 0.7%CVE-2022-38935HIGHAn issue was discovered in NiterForum version 2.5.0-beta in /src/main/java/cn/niter/forum/api/SsoApi.java and /src/main/java/cn/niter/forum/EPSS 0.7%CVE-2024-27855HIGHThe issue was addressed with improved checks. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14EPSS 0.7%CVE-2021-41543—A vulnerability has been identified in Climatix POL909 (AWB module) (All versions < V11.44), Climatix POL909 (AWM module) (All versions < V1EPSS 0.7%CVE-2025-43233CRITICALThis issue was addressed with improved access restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13EPSS 0.7%CVE-2022-39946HIGHAn access control vulnerability [CWE-284] in FortiNAC version 9.4.2 and below, version 9.2.7 and below, 9.1 all versions, 8.8 all versions, EPSS 0.7%CVE-2025-30689MEDIUMVulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.EPSS 0.7%CVE-2025-30696MEDIUMVulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versions that are affected are 8.0.0-8.0.41, 8EPSS 0.7%CVE-2025-30699MEDIUMVulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 8EPSS 0.7%CVE-2024-24830CRITICALOpenObserve Privilege Escalation Vulnerability in Users APIEPSS 0.7%CVE-2025-21588MEDIUMVulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.4.0-8.4.4 anEPSS 0.7%CVE-2025-30425MEDIUMThis issue was addressed through improved state management. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macEPSS 0.7%CVE-2024-40117CRITICALIncorrect access control in Solar-Log 1000 before v2.8.2 and build 52- 23.04.2013 allows attackers to obtain Administrative privileges via cEPSS 0.7%CVE-2026-5786HIGHAn Improper Access Control vulnerability in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote authenticated attacEPSS 0.7%CVE-2023-21750HIGHWindows Kernel Elevation of Privilege VulnerabilityEPSS 0.7%CVE-2021-21964HIGHA denial of service vulnerability exists in the Modbus configuration functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. SpeciaEPSS 0.7%CVE-2026-33109CRITICALAzure Managed Instance for Apache Cassandra Remote Code Execution VulnerabilityEPSS 0.7%CVE-2024-39697HIGHphonenumber panics on parsing crafted phonenumber inputsEPSS 0.7%