Fallos del tipo CWE-284
4370 resultadosCVE-2023-23575MEDIUMImproper access control vulnerability in CONPROSYS IoT Gateway products allows a remote authenticated attacker to bypass access restriction EPSS 0.7%CVE-2023-2901MEDIUMNFine Rapid Development Platform access controlEPSS 0.7%CVE-2023-2940MEDIUMInappropriate implementation in Downloads in Google Chrome prior to 114.0.5735.90 allowed an attacker who convinced a user to install a maliEPSS 0.7%CVE-2025-25614HIGHIncorrect Access Control in Unifiedtransform 2.0 leads to Privilege Escalation, which allows teachers to update the personal data of fellow EPSS 0.7%CVE-2019-3845HIGHA lack of access control was found in the message queues maintained by Satellite's QPID broker and used by katello-agent in versions before EPSS 0.7%CVE-2019-11786MEDIUMImproper access control in Odoo Community 13.0 and earlier and Odoo Enterprise 13.0 and earlier, allows remote authenticated users to modifyEPSS 0.7%CVE-2011-1762—A flaw exists in Wordpress related to the 'wp-admin/press-this.php 'script improperly checking user permissions when publishing posts. This EPSS 0.7%CVE-2023-6578HIGHSoftware AG WebMethods access controlEPSS 0.7%CVE-2022-46664HIGHA vulnerability has been identified in Mendix Workflow Commons (All versions < V2.4.0), Mendix Workflow Commons V2.1 (All versions < V2.1.4)EPSS 0.7%CVE-2023-43141—TOTOLINK A3700R V9.1.2u.6134_B20201202 and N600R V5.3c.5137 are vulnerable to Incorrect Access Control.EPSS 0.7%CVE-2022-26423HIGHMISSING AUTHORIZATION CWE-862EPSS 0.7%CVE-2024-29866CRITICALDatalust Seq before 2023.4.11151 and 2024 before 2024.1.11146 has Incorrect Access Control because a Project Owner or Organization Owner canEPSS 0.7%CVE-2021-34626MEDIUMWP Upload Restriction <= 2.2.3 - Missing Access Control in deleteCustomType functionEPSS 0.7%CVE-2025-2996MEDIUMTenda FH1202 Web Management Interface SysToolDDNS access controlEPSS 0.7%CVE-2025-43184CRITICALThis issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.7, maEPSS 0.7%CVE-2023-44031HIGHIncorrect access control in Reprise License Management Software Reprise License Manager v15.1 allows attackers to arbitrarily save sensitiveEPSS 0.7%CVE-2024-25251HIGHcode-projects Agro-School Management System 1.0 is suffers from Incorrect Access Control.EPSS 0.7%CVE-2025-21587HIGHVulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). EPSS 0.7%CVE-2023-38848—An issue in rmc R Beauty CLINIC Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request.EPSS 0.7%CVE-2023-36106—An incorrect access control vulnerability in powerjob 4.3.2 and earlier allows remote attackers to obtain sensitive information via the inteEPSS 0.7%