Weaknesses of type CWE-284

4,443 results
CVE-2017-6016An Improper Access Control issue was discovered in LCDS - Leao Consultoria e Desenvolvimento de Sistemas LTDA ME LAquis SCADA. The followingEPSS 0.3%CVE-2022-32945MEDIUMAn access issue was addressed with additional sandbox restrictions on third-party apps. This issue is fixed in macOS Ventura 13. An app may EPSS 0.3%CVE-2022-43679MEDIUMThe Docker image of ownCloud Server through 10.11 contains a misconfiguration that renders the trusted_domains config useless. This could beEPSS 0.3%CVE-2026-21889LOWWeblate leaks information via screenshotsEPSS 0.3%CVE-2026-1963MEDIUMWeKan Attachment Storage attachments.js MoveStorageBleed access controlEPSS 0.3%CVE-2025-3169LOWProjeqtor saveAttachment.php unrestricted uploadEPSS 0.3%CVE-2026-28922MEDIUMThis issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26EPSS 0.3%CVE-2024-21169MEDIUMVulnerability in the Oracle Marketing product of Oracle E-Business Suite (component: Partners). Supported versions that are affected are 12EPSS 0.3%CVE-2024-30481MEDIUMWordPress JCH Optimize plugin <= 4.0.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-0740HIGHImproper Access Control vulnerability in EmbedAIEPSS 0.3%CVE-2025-20144MEDIUMCisco IOS XR Software Access Control List Bypass VulnerabilityEPSS 0.3%CVE-2025-10763MEDIUMacademico-sis academico Profile Picture edit-photo unrestricted uploadEPSS 0.3%CVE-2025-2031MEDIUMChestnutCMS upload uploadFile unrestricted uploadEPSS 0.3%CVE-2022-36851LOWImproper access control vulnerability in Samsung pass prior to version 4.0.03.1 allow physical attackers to access data of Samsung pass on aEPSS 0.3%CVE-2026-5484MEDIUMBookStackApp BookStack Chapter Export ExportFormatter.php chapterToMarkdown access controlEPSS 0.3%CVE-2025-0739HIGHImproper Access Control vulnerability in EmbedAIEPSS 0.3%CVE-2025-13785MEDIUMyungifez Skuul School Management System Image profile information disclosureEPSS 0.3%CVE-2023-52099HIGHVulnerability of foreground service restrictions being bypassed in the NMS module. Successful exploitation of this vulnerability may affect EPSS 0.3%CVE-2025-8526MEDIUMExrick xboot UploadController.java upload unrestricted uploadEPSS 0.3%CVE-2024-20929MEDIUMVulnerability in the Oracle Application Object Library product of Oracle E-Business Suite (component: DB Privileges). Supported versions thEPSS 0.3%