Weaknesses of type CWE-1220
85 resultsCVE-2025-8053LOWInsufficient access control vulnerability has been discovered in Opentext Flipper.EPSS 0.2%CVE-2024-13272MEDIUMParagraphs table - Critical - Access bypass, Information Disclosure - SA-CONTRIB-2024-036EPSS 0.2%CVE-2025-2498LOWInsufficient Granularity of Access Control in GitLabEPSS 0.2%CVE-2023-44285HIGH
Dell PowerProtect DD, versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an improper access control vulnerability.EPSS 0.2%CVE-2026-35436HIGHMicrosoft Office Click-To-Run Elevation of Privilege VulnerabilityEPSS 0.2%CVE-2024-52799HIGHArgo Workflows Chart: Excessive Privileges in Workflow RoleEPSS 0.2%CVE-2024-39279MEDIUMInsufficient granularity of access control in UEFI firmware in some Intel(R) processors may allow a authenticated user to potentially enableEPSS 0.2%CVE-2023-6725MEDIUMTripleo-ansible: bind keys are world readableEPSS 0.2%CVE-2023-45217HIGHImproper access control in Intel(R) Power Gadget software for Windows all versions may allow an authenticated user to potentially enable escEPSS 0.2%CVE-2023-40070HIGHImproper access control in some Intel(R) Power Gadget software for macOS all versions may allow an authenticated user to potentially enable EPSS 0.2%CVE-2023-31343HIGHImproper input validation in the SMM handler may allow a privileged attacker to overwrite SMRAM, potentially leading to arbitrary code execuEPSS 0.2%CVE-2024-52814LOWHelm Lacks Granularity in Workflow RoleEPSS 0.2%CVE-2023-31342HIGHImproper input validation in the SMM handler may allow a privileged attacker to overwrite SMRAM, potentially leading to arbitrary code execuEPSS 0.2%CVE-2025-22839HIGHInsufficient granularity of access control in the OOB-MSM for some Intel(R) Xeon(R) 6 Scalable processors may allow a privileged user to potEPSS 0.2%CVE-2025-31961LOWHCL Connections is vulnerable to broken access controlEPSS 0.1%CVE-2025-8306MEDIUMImproper Access Control in Asseco Infomedica PlusEPSS 0.1%CVE-2024-53295HIGHDell PowerProtect DD versions prior to 8.3.0.0, 7.10.1.50, and 7.13.1.20 contain an improper access control vulnerability. A local maliciousEPSS 0.1%CVE-2025-48517MEDIUMInsufficient Granularity of Access Control in SEV firmware could allow a privileged user with a malicious hypervisor to create a SEV-ES guesEPSS 0.1%CVE-2025-48514MEDIUMInsufficient Granularity of Access Control in SEV firmware can allow a privileged attacker to create a SEV-ES Guest to attack SNP guest, potEPSS 0.1%CVE-2024-21947HIGHImproper input validation in the system management mode (SMM) could allow a privileged attacker to overwrite arbitrary memory potentially reEPSS 0.1%