Fallos del tipo CWE-284

4364 resultados
CVE-2020-8278Improper access control in Nextcloud Social app version 0.3.1 allowed to read posts of any user.EPSS 1.0%CVE-2020-26072HIGHCisco IoT Field Network Director SOAP API Authorization Bypass VulnerabilityEPSS 1.0%CVE-2021-1591MEDIUMCisco Nexus 9500 Series Switches Access Control List Bypass VulnerabilityEPSS 1.0%CVE-2019-10138HIGHA flaw was discovered in the python-novajoin plugin, all versions up to, excluding 1.1.1, for Red Hat OpenStack Platform. The novajoin API lEPSS 1.0%CVE-2022-27178CRITICALA denial of service vulnerability exists in the confctl_set_wan_cfg functionality of TCL LinkHub Mesh Wi-Fi MS1G_00_01.00_14. A specially-crEPSS 1.0%CVE-2023-40573CRITICALXWiki Platform's Groovy jobs check the wrong author, allowing remote code executionEPSS 1.0%CVE-2022-0731MEDIUMImproper Access Control (IDOR) in dolibarr/dolibarrEPSS 1.0%CVE-2021-24845Improved Include Page <= 1.2 - Contributor+ Arbitrary Posts/Pages AccessEPSS 1.0%CVE-2025-58726HIGHWindows SMB Server Elevation of Privilege VulnerabilityEPSS 1.0%CVE-2026-5311MEDIUMD-Link DNS-1550-04 file_center.cgi Webdav_Access_List access controlEPSS 1.0%CVE-2017-7497MEDIUMThe dialog for creating cloud volumes (cinder provider) in CloudForms does not filter cloud tenants by user. An attacker with the ability toEPSS 1.0%CVE-2021-24318Listeo < 1.6.11 - Multiple Authenticated IDOR VulnerabilitiesEPSS 1.0%CVE-2023-25775MEDIUMImproper access control in the Intel(R) Ethernet Controller RDMA driver for linux before version 1.9.30 may allow an unauthenticated user toEPSS 1.0%CVE-2022-23730The public API error causes for the attacker to be able to bypass API access control.EPSS 1.0%CVE-2025-26062CRITICALAn access control issue in Intelbras RX1500 v2.2.9 and RX3000 v1.0.11 allows unauthenticated attackers to access the router's settings file EPSS 1.0%CVE-2019-15956HIGHCisco Web Security Appliance Unauthorized Device Reset VulnerabilityEPSS 1.0%CVE-2019-11895MEDIUMImproper access control in the JSON-RPC interface of the Bosch Smart Home Controller (SHC)EPSS 1.0%CVE-2023-28300HIGHAzure Service Connector Security Feature Bypass VulnerabilityEPSS 1.0%CVE-2020-36721MEDIUMEpsilon Framework Themes (Various Versions) - Unauthenticated Plugin Activation/DeactivationEPSS 1.0%CVE-2022-3065MEDIUMImproper Access Control in jgraph/drawioEPSS 1.0%