Fallos del tipo CWE-284
4356 resultadosCVE-2024-29993HIGHAzure CycleCloud Elevation of Privilege VulnerabilityEPSS 2.0%CVE-2020-2506HIGHimproper access control vulnerability in HelpdeskEPSS 2.0%KEVCVE-2021-21083HIGHAdobe Experience Manager broken access control in DSRPReindexServlet could lead to denial-of-serviceEPSS 2.0%CVE-2016-8629—Red Hat Keycloak before version 2.4.0 did not correctly check permissions when handling service account user deletion requests sent to the rEPSS 2.0%CVE-2020-5242HIGHopenHAB exec add-ons allow remote arbitrary command executionEPSS 2.0%CVE-2018-0343—A vulnerability in the configuration and management service of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to exEPSS 2.0%CVE-2021-4201CRITICALPre-authentication session hijackingEPSS 1.9%CVE-2017-9626—Systems using the Marel Food Processing Systems Pluto platform do not restrict remote access. Marel has created an update for Pluto-based apEPSS 1.9%CVE-2020-5244HIGHPrivate data exposure via REST API in BuddyPressEPSS 1.9%CVE-2021-36917MEDIUMWordPress Hide My WP premium plugin <= 6.2.3 - Unauthenticated Plugin Deactivation vulnerabilityEPSS 1.9%CVE-2026-31843CRITICALThe goodoneuz/pay-uz Laravel package (<= 2.2.24) contains a critical vulnerability in the /payment/api/editable/update endpoint that allows EPSS 1.9%CVE-2019-1763HIGHCisco IP Phone 8800 Series Authorization Bypass VulnerabilityEPSS 1.9%CVE-2018-15466MEDIUMCisco Policy Suite Graphite Unauthenticated Read-Only Access VulnerabilityEPSS 1.9%CVE-2019-20470HIGHAn issue was discovered on TK-Star Q90 Junior GPS horloge 3.1042.9.8656 devices. It performs actions based on certain SMS commands. This canEPSS 1.9%CVE-2023-51644CRITICALAllegra SiteConfigAction Improper Access Control Remote Code Execution VulnerabilityEPSS 1.9%CVE-2025-15503MEDIUMSangfor Operation and Maintenance Management System common.jsp unrestricted uploadEPSS 1.9%CVE-2018-1129—A flaw was found in the way signature calculation was handled by cephx authentication protocol. An attacker having access to ceph cluster neEPSS 1.9%CVE-2024-21424MEDIUMAzure Compute Gallery Elevation of Privilege VulnerabilityEPSS 1.9%CVE-2025-23242HIGHNVIDIA Riva contains a vulnerability where a user could cause an improper access control issue. A successful exploit of this vulnerability mEPSS 1.9%CVE-2018-7791CRITICALA Permissions, Privileges, and Access Control vulnerability exists in Schneider Electric's Modicon M221 product (all references, all versionEPSS 1.9%