Fallos del tipo CWE-284

4356 resultados
CVE-2020-25698Users' enrollment capabilities were not being sufficiently checked in Moodle when they are restored into an existing course. This could leadEPSS 1.9%CVE-2020-5396JMX Insecure Default Configuration in GemFireEPSS 1.9%CVE-2024-13030MEDIUMD-Link DIR-823G Web Management Interface HNAP1 SetVirtualServerSettings access controlEPSS 1.9%CVE-2018-15398Cisco Adaptive Security Appliance Access Control List Bypass VulnerabilityEPSS 1.9%CVE-2020-8275Citrix Secure Mail for Android before 20.11.0 suffers from improper access control allowing unauthenticated access to read limited calendar EPSS 1.9%CVE-2020-8153Improper access control in Groupfolders app 4.0.3 allowed to delete hidden directories when when renaming an accessible item to the same namEPSS 1.9%CVE-2019-15068A broken access control vulnerability discovered in Smart Battery A4EPSS 1.9%CVE-2022-21182HIGHA privilege escalation vulnerability exists in the router configuration import functionality of InHand Networks InRouter302 V3.5.4. A speciaEPSS 1.8%CVE-2018-15610HIGHImproper access controls in IP Office one-X PortalEPSS 1.8%CVE-2018-4858A vulnerability has been identified in IEC 61850 system configurator (All versions < V5.80), DIGSI 5 (affected as IEC 61850 system configuraEPSS 1.8%CVE-2021-32656HIGHTrusted servers exchange can be triggered by attackerEPSS 1.8%CVE-2026-41641HIGHNocoBase Vulnerable to SQL Validation Bypass via `sqlCollection:update` Missing `checkSQL` CallEPSS 1.8%CVE-2021-36909HIGHWordPress WP Reset PRO Premium plugin <= 5.98 - Authenticated Database Reset vulnerabilityEPSS 1.8%CVE-2024-49107HIGHWmsRepair Service Elevation of Privilege VulnerabilityEPSS 1.8%CVE-2021-1580MEDIUMCisco Application Policy Infrastructure Controller Command Injection and File Upload VulnerabilitiesEPSS 1.8%CVE-2019-3928Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 allow any user to obtain the presentation passcode via the iso.3.6.1.EPSS 1.8%CVE-2023-28312MEDIUMAzure Machine Learning Information Disclosure VulnerabilityEPSS 1.8%CVE-2020-14499Advantech iView, versions 5.6 and prior, has an improper access control vulnerability. Successful exploitation of this vulnerability may allEPSS 1.7%CVE-2021-34795CRITICALCisco Catalyst PON Series Switches Optical Network Terminal VulnerabilitiesEPSS 1.7%CVE-2020-26224HIGHImproper Access Control in PrestaShopEPSS 1.7%