Fallos del tipo CWE-280
145 resultadosCVE-2025-27024MEDIUMImproper File Access in Infinera G42EPSS 0.3%CVE-2025-59040MEDIUMTuleap backlog item representations do not verify the permissions of the child trackersEPSS 0.3%CVE-2025-22129MEDIUMInitial effort field does not respect field permissions in the Taskboard REST card representation in TuleapEPSS 0.3%CVE-2025-22256MEDIUMA improper handling of insufficient permissions or privileges in Fortinet FortiPAM 1.4.0 through 1.4.1, 1.3.0, 1.2.0, 1.1.0 through 1.1.2, 1EPSS 0.3%CVE-2024-6697MEDIUMHitachi Vantara Pentaho Business Analytics Server - Improper Handling of Insufficient Permissions or PrivilegesEPSS 0.3%CVE-2020-3427MEDIUMDuo Authentication for Windows Logon and RDP Privilege Escalation VulnerabilityEPSS 0.3%CVE-2025-58457MEDIUMApache ZooKeeper: Insufficient Permission Check in AdminServer Snapshot/Restore CommandsEPSS 0.3%CVE-2026-41566CRITICALApache Kvrocks: Improper permission for the APPLYBATCH commandEPSS 0.3%CVE-2025-46066CRITICALAn issue in Automai Director v.25.2.0 allows a remote attacker to escalate privilegesEPSS 0.3%CVE-2024-6302HIGHImproper Handling of Insufficient Permissions or Privileges in ConduitEPSS 0.3%CVE-2025-62510HIGHFileRise insecure folder visibility via name-based mapping and incomplete ACL checksEPSS 0.3%CVE-2025-62509HIGHFileRise improper ownership/permission validation allowed cross-tenant file operationsEPSS 0.3%CVE-2024-4692LOWMultiple missing permission checksEPSS 0.3%CVE-2024-4211LOWMultiple missing permission checksEPSS 0.3%CVE-2025-46740HIGHImproper Handling of Insufficient PermissionsEPSS 0.3%CVE-2026-10549MEDIUMPrivilege escalation in Yandex DatabaseEPSS 0.3%CVE-2026-9792MEDIUMKeycloak: keycloak: security restriction bypass allows unauthorized ropc token acquisitionEPSS 0.3%CVE-2024-35301MEDIUMIn JetBrains TeamCity before 2024.03.1 commit status publisher didn't check project scope of the GitHub App tokenEPSS 0.3%CVE-2026-1772MEDIUMRTU500 web interface: An unprivileged user can read user management information. The information cannot be accessed via the RTU500 web user EPSS 0.3%CVE-2026-44201MEDIUMWagtail: Improper restriction handling on Documents and Images APIEPSS 0.3%