Weaknesses of type CWE-863

2,111 results
CVE-2025-69289MEDIUMDiscourse has insecure default configuration that allows non-admin moderators to takeover any non-staff account via email changeEPSS 0.2%CVE-2025-43251MEDIUMAn authorization issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.6. A local attacker may gain acEPSS 0.2%CVE-2025-1418MEDIUMInformation disclosure in Proget MDMEPSS 0.2%CVE-2026-44169MEDIUMMariaDB: Authorization bypass in role-based routine-level privilege check exposes stored routine definitionsEPSS 0.2%CVE-2025-3272MEDIUMIncorrect user authorization vulnerability has been identified in Open Text Operations Bridge Manager.EPSS 0.2%CVE-2026-33570MEDIUMSubnet Solutions PowerSYSTEM Center Incorrect AuthorizationEPSS 0.2%CVE-2025-26850CRITICALThe agent in Quest KACE Systems Management Appliance (SMA) before 14.0.97 and 14.1.x before 14.1.19 potentially allows privilege escalation EPSS 0.2%CVE-2024-42013MEDIUMIn GRAU DATA Blocky before 3.1, Blocky-Gui has a Client-Side Enforcement of Server-Side Security vulnerability. An attacker with Windows admEPSS 0.2%CVE-2024-12831MEDIUMArista NG Firewall uvm_login Incorrect Authorization Privilege Escalation VulnerabilityEPSS 0.2%CVE-2024-41979HIGHA vulnerability has been identified in SmartClient modules Opcenter QL Home (SC) (All versions >= V13.2 < V2506), SOA Audit (All versions >=EPSS 0.2%CVE-2026-26230LOWTeam Admin Privilege Escalation to Demote Members to GuestEPSS 0.2%CVE-2026-26304MEDIUMPermission Bypass in Playbook Run CreationEPSS 0.2%CVE-2025-13432MEDIUMTerraform Enterprise state versions can be created by users with specific permissions without sufficient write accessEPSS 0.2%CVE-2026-27153LOWDiscourse doesn't prevent moderators from exporting user Chat DMsEPSS 0.2%CVE-2025-12756MEDIUMInsecure Direct Object Reference in Mattermost Boards Plugin Enables Unauthorised Comment DeletionEPSS 0.2%CVE-2022-22307MEDIUMIBM Security Guardium privilege escalationEPSS 0.2%CVE-2026-35491MEDIUMPi-hole FTL: CLI API sessions can import Teleporter archives and modify configurationEPSS 0.2%CVE-2023-22593MEDIUMIBM Robotic Process Automation for Cloud Pak security configurationEPSS 0.2%CVE-2026-33410MEDIUMDiscourse hardens chat DM channel creation and expansionEPSS 0.2%CVE-2025-43387HIGHA permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.7.2, macOS Tahoe 26.1. A malicious aEPSS 0.2%