Fallos del tipo CWE-285
1296 resultadosCVE-2024-21039MEDIUMVulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle E-Business Suite (component: LOV). Supported versioEPSS 0.3%CVE-2024-21018MEDIUMVulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle E-Business Suite (component: LOV). Supported versioEPSS 0.3%CVE-2024-21031MEDIUMVulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle E-Business Suite (component: LOV). Supported versioEPSS 0.3%CVE-2022-46312—The application management module has a vulnerability in permission verification. Successful exploitation of this vulnerability causes unexpEPSS 0.3%CVE-2026-2107MEDIUMyeqifu warehouse Log Info LoginfoController.java batchDeleteLoginfo improper authorizationEPSS 0.3%CVE-2026-2106MEDIUMyeqifu warehouse Notice Management NoticeController.java batchDeleteNotice improper authorizationEPSS 0.3%CVE-2026-30496CRITICALThe Optoma CinemaX P2 projector (firmware TVOS-04.24.010.04.01, Android 8.0.0) exposes an HTTP API on TCP port 2345 that allows full unautheEPSS 0.3%CVE-2025-9936MEDIUMfuyang_lipengjun platform queryAll AdController improper authorizationEPSS 0.3%CVE-2025-10674MEDIUMfuyang_lipengjun platform queryAll AttributeCategoryController improper authorizationEPSS 0.3%CVE-2025-10676MEDIUMfuyang_lipengjun platform queryAll BrandController improper authorizationEPSS 0.3%CVE-2025-10821MEDIUMfuyang_lipengjun platform queryAll TopicCategoryController improper authorizationEPSS 0.3%CVE-2025-10073MEDIUMPortabilis i-Educar turma improper authorizationEPSS 0.3%CVE-2025-10822MEDIUMfuyang_lipengjun platform queryAll SysSmsLogController improper authorizationEPSS 0.3%CVE-2025-10675MEDIUMfuyang_lipengjun platform queryAll AttributeController improper authorizationEPSS 0.3%CVE-2026-2010LOWSanluan PublicCMS Trade Payment TradePaymentService.java paid improper authorizationEPSS 0.3%CVE-2020-3394HIGHCisco Nexus 3000 and 9000 Series Switches Privilege Escalation VulnerabilityEPSS 0.3%CVE-2025-15106MEDIUMgetmaxun Authentication Endpoint auth.ts router.get improper authorizationEPSS 0.3%CVE-2022-36876LOWImproper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10 allows physical attackers to access account list without auEPSS 0.3%CVE-2026-6572MEDIUMCollabora KodExplorer fileUpload Endpoint share.class.php improper authorizationEPSS 0.3%CVE-2024-20497MEDIUMCisco Expressway Edge Improper Authorization VulnerabilityEPSS 0.3%