Fallos del tipo CWE-264

284 resultados
CVE-2017-7916A Permissions, Privileges, and Access Controls issue was discovered in ABB VSN300 WiFi Logger Card versions 1.8.15 and prior, and VSN300 WiFEPSS 1.5%CVE-2020-3112HIGHCisco Data Center Network Manager Privilege Escalation VulnerabilityEPSS 1.5%CVE-2017-6624A vulnerability in Cisco IOS 15.5(3)M Software for Cisco CallManager Express (CME) could allow an unauthenticated, remote attacker to make uEPSS 1.4%CVE-2018-0096A vulnerability in the role-based access control (RBAC) functionality of Cisco Prime Infrastructure could allow an authenticated, remote attEPSS 1.4%CVE-2019-1969MEDIUMCisco NX-OS Software SNMP Access Control List Configuration Name Bypass VulnerabilityEPSS 1.4%CVE-2019-17326ClipSoft REXPERT 1.0.0.527 and earlier version allows remote attacker to arbitrary file deletion by issuing a HTTP GET request with a speciaEPSS 1.3%CVE-2019-15272MEDIUMCisco Unified Communications Manager Security Bypass VulnerabilityEPSS 1.3%CVE-2019-19106CRITICALABB/Busch-Jaeger Telephone Gateway TG/S 3.2 Access Control issuesEPSS 1.3%CVE-2019-15960MEDIUMCisco Webex Network Recording Admin Page Privilege Escalation VulnerabilityEPSS 1.3%CVE-2019-1906MEDIUMCisco Prime Infrastructure Virtual Domain Privilege Escalation VulnerabilityEPSS 1.3%CVE-2019-17322ClipSoft REXPERT 1.0.0.527 and earlier version allows arbitrary file creation via a POST request with the parameter set to the file path to EPSS 1.2%CVE-2018-0089A vulnerability in the Policy and Charging Rules Function (PCRF) of the Cisco Policy Suite (CPS) could allow an unauthenticated, remote attaEPSS 1.1%CVE-2019-1981MEDIUMCisco Firepower Threat Defense Software NULL Character Obfuscation Detection Bypass VulnerabilityEPSS 1.0%CVE-2022-29423LOWWordPress Countdown & Clock plugin <= 2.3.2 - Pro Features Lock Bypass vulnerabilityEPSS 1.0%CVE-2022-34149CRITICALWordPress WP OAuth Server plugin <= 3.0.4 - Authentication Bypass vulnerabilityEPSS 1.0%CVE-2021-22661Changing the password on the module webpage does not require the user to type in the current password first. Thus, the password could be chaEPSS 1.0%CVE-2019-3475HIGHLocal privilege escalation in Filr famtdEPSS 1.0%CVE-2019-1980MEDIUMCisco Firepower Threat Defense Software Nonstandard Protocol Detection Bypass VulnerabilityEPSS 1.0%CVE-2019-1982MEDIUMCisco Firepower Threat Defense Software HTTP Filtering Bypass VulnerabilityEPSS 1.0%CVE-2022-36375HIGHWordPress Tabs plugin <= 3.6.0 - Authenticated WordPress Options Change vulnerabilityEPSS 1.0%