Fallos del tipo CWE-285

1302 resultados
CVE-2023-24476LOWPTC Vuforia Studio Improper AuthorizationEPSS 0.1%CVE-2026-3667MEDIUMFreedom Factory dGEN1 org.ethosmobile.ethoslauncher FakeAppService improper authorizationEPSS 0.1%CVE-2023-44125MEDIUMPersonalized service - Theft and (over-)write of arbitrary files with system privilege via PendingIntent hijackingEPSS 0.1%CVE-2023-44123MEDIUMBluetooth - Theft and (over-)write of arbitrary files with system privilege via PendingIntent hijackingEPSS 0.1%CVE-2026-28845MEDIUMAn authorization issue was addressed with improved state management. This issue is fixed in macOS Tahoe 26.4. An app may be able to access pEPSS 0.1%CVE-2023-28556HIGHImproper Authorization in HLOSEPSS 0.1%CVE-2026-0072CRITICALIn addInputMethodListener of com.android.server.inputmethod.InputMethodManagerService, there is a missing permission check. This could lead EPSS 0.1%CVE-2025-8532MEDIUMIDOR in Bimser's eBA Document and Workflow Management SystemEPSS 0.1%CVE-2026-20656LOWA logic issue was addressed with improved validation. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, macOS Tahoe 26.3. AnEPSS 0.1%CVE-2024-51525MEDIUMPermission control vulnerability in the clipboard module Impact: Successful exploitation of this vulnerability may affect service confidentiEPSS 0.1%CVE-2022-22268MEDIUMIncorrect implementation of Knox Guard prior to SMR Jan-2022 Release 1 allows physically proximate attackers to temporary unlock the Knox GuEPSS 0.1%CVE-2021-25459MEDIUMAn improper access control vulnerability in sspInit() in BlockchainTZService prior to SMR Sep-2021 Release 1 allows attackers to start BlockEPSS 0.1%CVE-2026-20666MEDIUMAn authorization issue was addressed with improved state management. This issue is fixed in macOS Tahoe 26.3. An app may be able to access sEPSS 0.1%CVE-2024-42032MEDIUMAccess permission verification vulnerability in the Contacts module Impact: Successful exploitation of this vulnerability may affect serviceEPSS 0.1%CVE-2026-12065LOWGroww Stock, Mutual Fund, Gold App WebView URL improper authorization in handler for custom url schemeEPSS 0.1%CVE-2026-12190MEDIUMGenspark AI Workspace App ai.mainfunc.genspark improper authorization in handler for custom url schemeEPSS 0.1%CVE-2026-3669MEDIUMFreedom Factory dGEN1 com.dgen.alarm AlarmService improper authorizationEPSS 0.1%CVE-2026-3670MEDIUMFreedom Factory dGEN1 com.dgen.alarm improper authorizationEPSS 0.1%CVE-2024-38425MEDIUMImproper Authorization in PerformanceEPSS 0.1%CVE-2026-12189MEDIUMMoovit Bus & Public Transit App com.tranzmate improper authorization in handler for custom url schemeEPSS 0.1%