Falhas do tipo CWE-863

2.098 resultados
CVE-2025-30751HIGHVulnerability in the Oracle Database component of Oracle Database Server. Supported versions that are affected are 19.27 and 23.4-23.8. EEPSS 0.3%CVE-2024-9623MEDIUMIncorrect Authorization in GitLabEPSS 0.3%CVE-2025-13468MEDIUMSourceCodester Alumni Management System Delete admin_class.php delete_event authorizationEPSS 0.3%CVE-2024-36364MEDIUMIn JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 improper access control in Pull Requests and Commit status publisherEPSS 0.3%CVE-2025-49549LOWAdobe Commerce | Incorrect Authorization (CWE-863)EPSS 0.3%CVE-2026-11577HIGHKeycloak: keycloak: privilege escalation via partialimport fgap permission bypassEPSS 0.3%CVE-2023-29761MEDIUMAn issue found in Sleep v.20230303 for Android allows unauthorized apps to cause a persistent denial of service by manipulating the SharedPrEPSS 0.3%CVE-2023-32967MEDIUMQTS, QuTScloudEPSS 0.3%CVE-2026-9640HIGHLXD Snapshot Import Privilege Escalation VulnerabilityEPSS 0.3%CVE-2026-42999MEDIUMAn issue was discovered in OpenStack Keystone before 29.0.2. The Keystone RBAC policy enforcer in enforce_call unconditionally merges the raEPSS 0.3%CVE-2026-30228MEDIUMParse Server: File creation and deletion bypasses `readOnlyMasterKey` write restrictionEPSS 0.3%CVE-2026-43000MEDIUMAn issue was discovered in OpenStack Keystone before 29.0.2. When combined with an application credential impersonation vulnerability, an atEPSS 0.3%CVE-2026-2462MEDIUMAdmin RCE via Malicious Plugin Upload on CI Test InstancesEPSS 0.3%CVE-2026-29087HIGH@hono/node-server: Authorization bypass for protected static paths via encoded slashes in Serve Static MiddlewareEPSS 0.3%CVE-2023-29759MEDIUMAn issue found in FlightAware v.5.8.0 for Android allows unauthorized apps to cause a persistent denial of service by manipulating the databEPSS 0.3%CVE-2026-21722MEDIUMPublic Dashboards time range restriction on annotations can be bypassedEPSS 0.3%CVE-2026-44911LOWApache NiFi: Incorrect Authorization for Configuration Verification RequestsEPSS 0.3%CVE-2023-29758MEDIUMAn issue found in Blue Light Filter v.1.5.5 for Android allows unauthorized apps to cause a persistent denial of service by manipulating theEPSS 0.3%CVE-2016-20075HIGHWordPress Ultimate Product Catalog 3.8.6 Arbitrary File Upload RCEEPSS 0.3%CVE-2025-30209MEDIUMTuleap has improper permission handling in the REST endpoints and release notes display of the FRS pluginEPSS 0.3%