Falhas do tipo CWE-284
4.367 resultadosCVE-2022-22190HIGHParagon Active Assurance Control Center: Information disclosure vulnerability in crafted URLEPSS 0.9%CVE-2021-26338—Improper access controls in System Management Unit (SMU) may allow for an attacker to override performance control tables located in DRAM reEPSS 0.9%CVE-2022-4229HIGHSourceCodester Book Store Management System index.php access controlEPSS 0.9%CVE-2025-57567CRITICALA remote code execution (RCE) vulnerability exists in the PluXml CMS theme editor, specifically in the minify.php file located under the defEPSS 0.9%CVE-2017-12191—A flaw was found in the CloudForms account configuration when using VMware. By default, a shared account is used that has privileged access EPSS 0.9%CVE-2024-29060MEDIUMVisual Studio Elevation of Privilege VulnerabilityEPSS 0.9%CVE-2023-23446HIGHImproper Access Control in SICK FTMg AIR FLOW SENSOR with Partnumbers
1100214, 1100215, 1100216, 1120114, 1120116, 1122524, 1122526 allows aEPSS 0.9%CVE-2024-20291MEDIUMA vulnerability in the access control list (ACL) programming for port channel subinterfaces of Cisco Nexus 3000 and 9000 Series Switches in EPSS 0.9%CVE-2018-17559HIGHDue to incorrect access control, unauthenticated remote attackers can view the /video.mjpg video stream of certain ABUS TVIP cameras.EPSS 0.9%CVE-2020-10731—A flaw was found in the nova_libvirt container provided by the Red Hat OpenStack Platform 16, where it does not have SELinux enabled. This fEPSS 0.9%CVE-2022-35843HIGHAn authentication bypass by assumed-immutable data vulnerability [CWE-302] in the FortiOS SSH login component 7.2.0, 7.0.0 through 7.0.7, EPSS 0.9%CVE-2018-3762—Nextcloud Server before 12.0.8 and 13.0.3 suffers from improper checks of dropped permissions for incoming shares allowing a user to still rEPSS 0.9%CVE-2019-10187MEDIUMA flaw was found in moodle before versions 3.7.1, 3.6.5, 3.5.7. Users with permission to delete entries from a glossary were able to delete EPSS 0.9%CVE-2019-10189MEDIUMA flaw was found in moodle before versions 3.7.1, 3.6.5, 3.5.7. Teachers in an assignment group could modify group overrides for other groupEPSS 0.9%CVE-2024-28917MEDIUMAzure Arc-enabled Kubernetes Extension Cluster-Scope Elevation of Privilege VulnerabilityEPSS 0.9%CVE-2019-10188MEDIUMA flaw was found in moodle before versions 3.7.1, 3.6.5, 3.5.7. Teachers in a quiz group could modify group overrides for other groups in thEPSS 0.9%CVE-2022-34270CRITICALAn issue was discovered in RWS WorldServer before 11.7.3. Regular users can create users with the Administrator role via UserWSUserManager.EPSS 0.9%CVE-2021-1625MEDIUMCisco IOS XE Software Zone-Based Policy Firewall ICMP and UDP Inspection VulnerabilityEPSS 0.9%CVE-2024-26029HIGHAdobe Experience Manager | Improper Access Control (CWE-284)EPSS 0.9%CVE-2023-40039—An issue was discovered on ARRIS TG852G, TG862G, and TG1672G devices. A remote attacker (in proximity to a Wi-Fi network) can derive the defEPSS 0.9%