Fallos del tipo CWE-285
1285 resultadosCVE-2017-0927—Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the deployment keys component resulting in unauthoEPSS 0.8%CVE-2024-4819MEDIUMCampcodes Online Laundry Management System admin_class.php improper authorizationEPSS 0.8%CVE-2021-42336MEDIUMHuachu Digital Technology Co.,Ltd. Easytest - Improper AuthorizationEPSS 0.8%CVE-2023-28634HIGHGLPI vulnerable to Privilege Escalation from Technician to Super-AdminEPSS 0.8%CVE-2018-14637MEDIUMThe SAML broker consumer endpoint in Keycloak before version 4.6.0.Final ignores expiration conditions on SAML assertions. An attacker can eEPSS 0.8%CVE-2022-31247CRITICALRancher: Downstream cluster privilege escalation through cluster and project role template binding (CRTB/PRTB)EPSS 0.8%CVE-2021-22862—Improper access control in GitHub Enterprise Server leading to the disclosure of Actions secrets to forksEPSS 0.8%CVE-2022-29236MEDIUMImproper access control for pencil annotations in BigBlueButtonEPSS 0.8%CVE-2020-3267MEDIUMCisco Unified Contact Center Express Improper API Authorization VulnerabilityEPSS 0.8%CVE-2018-12466MEDIUMopenbuildservice allowed deleting packages via project linksEPSS 0.8%CVE-2020-5240HIGH2FA bypass through deleting devices in wagtail-2faEPSS 0.8%CVE-2020-16096CRITICALIn Gallagher Command Centre versions 8.10 prior to 8.10.1134(MR4), 8.00 prior to 8.00.1161(MR5), 7.90 prior to 7.90.991(MR5), 7.80 prior to EPSS 0.8%CVE-2021-25973MEDIUMPublify - Improper Authorization Leads to Guest Signup Restriction BypassEPSS 0.8%CVE-2024-32881CRITICALUnauthorized access to GET/SET of Slack Bot Tokens in DanswerEPSS 0.8%CVE-2020-26246HIGHAuthorization bypass in PimcoreEPSS 0.8%CVE-2021-28567MEDIUMMagento Commerce improper authorization allows an authenticated user to perform certain functions without permissionEPSS 0.8%CVE-2020-5333MEDIUMRSA Archer, versions prior to 6.7 P3 (6.7.0.3), contain an authorization bypass vulnerability in the REST API. A remote authenticated maliciEPSS 0.8%CVE-2023-20088MEDIUMCisco Finesse Reverse Proxy VPN-less Access to Finesse Desktop Denial of Service VulnerabilityEPSS 0.8%CVE-2023-2496HIGHGo Pricing - WordPress Responsive Pricing Tables <= 3.3.19 - Improper Authorization to Arbitrary File UploadEPSS 0.8%CVE-2022-34446HIGH
PowerPath Management Appliance with versions 3.3 & 3.2* contains Authorization Bypass vulnerability. An authenticated remote user with limiEPSS 0.8%