Fallos del tipo CWE-863

2111 resultados
CVE-2026-58056HIGHRustDesk - FileTransfer Session Authorization Scope BypassEPSS 0.2%CVE-2023-23506MEDIUMA permissions issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.2. An app may be able to access user-senEPSS 0.2%CVE-2026-5378MEDIUMrunZero Platform user creation leakEPSS 0.2%CVE-2026-25963LOWFleet: Authorization Bypass in certificate template batch deletion for team administratorsEPSS 0.2%CVE-2023-23510MEDIUMA permissions issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.2. An app may be able to access a user’sEPSS 0.2%CVE-2026-32058LOWOpenClaw < 2026.2.26 - Approval Context-Binding Weakness in system.run via host=nodeEPSS 0.2%CVE-2025-3611LOWImproper Access Control in Mattermost allows System Managers to view team details despite role restrictionsEPSS 0.2%CVE-2025-58134MEDIUMZoom Workplace Clients for Windows - Incorrect AuthorizationEPSS 0.2%CVE-2025-34467MEDIUMZwiiCMS < 13.7.00 Lock Persistence Authenticated DoS Against Administrative PagesEPSS 0.2%CVE-2026-24176MEDIUMNVIDIA KAI Scheduler contains a vulnerability where an attacker could cause improper authorization through cross-namespace pod references. AEPSS 0.2%CVE-2026-30239MEDIUMOpenProject has a Permission Check bypass on Budget deletion allows reassignment of WorkPackages into other budgetsEPSS 0.2%CVE-2026-56842HIGHA malicious actor with access to the network and under certain conditions could exploit an Incorrect Authorization vulnerability found in UnEPSS 0.2%CVE-2026-25568HIGHWeKan < 8.19 allowPrivateOnly Setting Enforcement BypassEPSS 0.2%CVE-2024-36963HIGHtracefs: Reset permissions on remount if permissions are optionsEPSS 0.2%CVE-2024-27086LOWMSAL.NET applications targeting Xamarin Android and .NET Android (MAUI) susceptible to local denial of serviceEPSS 0.2%CVE-2026-21896MEDIUMKirby is missing permission checks in the content changes APIEPSS 0.2%CVE-2025-67740LOWIn JetBrains TeamCity before 2025.11 improper access control could expose GitHub App token's metadataEPSS 0.2%CVE-2025-53971LOWChannel and Team Membership APIs inadvertently allow loss of Member privileges.EPSS 0.2%CVE-2025-9955MEDIUMImproper Access Control in WSO2 Enterprise Integrator Product via SOAP Admin Services for Logs and User-Store ConfigurationEPSS 0.2%CVE-2026-24069MEDIUMImproper Enforcement of Disabled Accounts in WebUI SSO in Kiuwan SASTEPSS 0.2%