Fallos del tipo CWE-284

4373 resultados
CVE-2024-46609HIGHAn access control issue in the CheckVip function in UserController.java of IceCMS v3.4.7 and before allows unauthenticated attackers to acceEPSS 0.7%CVE-2024-1668MEDIUMAvada <= 7.11.5 - Authenticated(Contributor+) Sensitive Information Exposure via Form EntriesEPSS 0.7%CVE-2021-4300MEDIUMghostlander Halcyon Block Verification main.cpp AddToBlockIndex access controlEPSS 0.7%CVE-2023-2845HIGHImproper Access Control in cloudexplorer-dev/cloudexplorer-liteEPSS 0.7%CVE-2025-24042HIGHVisual Studio Code JS Debug Extension Elevation of Privilege VulnerabilityEPSS 0.7%CVE-2021-24816Phoenix Media Rename < 3.4.4 - Author Arbitrary Media File RenamingEPSS 0.7%CVE-2021-24698Simple Download Monitor < 3.9.6 - Arbitrary Thumbnails RemovalEPSS 0.7%CVE-2025-24365HIGHvaultwarden allows escalation of privilege via variable confusion in OrgHeaders traitEPSS 0.7%CVE-2023-46665CRITICALImproper Access Control in Sielco PolyEco1000EPSS 0.7%CVE-2021-26733MEDIUMspx_restservice FirstReset_handler_func Broken Access ControlEPSS 0.7%CVE-2021-44467MEDIUMspx_restservice KillDupUsr_func Broken Access ControlEPSS 0.7%CVE-2022-32226MEDIUMAn improper access control vulnerability exists in Rocket.Chat <v5, <v4.8.2 and <v4.7.5 due to input data in the getUsersOfRoom Meteor serveEPSS 0.7%CVE-2023-51065HIGHIncorrect access control in QStar Archive Solutions Release RELEASE_3-0 Build 7 Patch 0 allows unauthenticated attackers to obtain system baEPSS 0.7%CVE-2022-1066HIGHMISSING AUTHORIZATION CWE-862EPSS 0.7%CVE-2024-38163HIGHWindows Update Stack Elevation of Privilege VulnerabilityEPSS 0.7%CVE-2026-28790HIGHOliveTin: Unauthenticated Action Termination via KillAction When Guests Must LoginEPSS 0.7%CVE-2025-1555MEDIUMhzmanyun Education and Training System saveImage unrestricted uploadEPSS 0.7%CVE-2024-41518HIGHAn Incorrect Access Control vulnerability in "/admin/programm/<program_id>/export/statistics" in Feripro <= v2.2.3 allows remote attackers tEPSS 0.7%CVE-2024-54533HIGHA permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.2, macOS Sonoma 14.7.5, macOEPSS 0.6%CVE-2022-25650A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.27), Mendix Applications using Mendix 8 (AllEPSS 0.6%