Fallos del tipo CWE-284
4457 resultadosCVE-2026-56823MEDIUMAutoGPT: IDOR in Webhook Ping Endpoint Allows Enumeration and Cross-User Ping TriggeringEPSS 0.1%CVE-2023-21447MEDIUMImproper access control vulnerabilities in Samsung Cloud prior to version 5.3.0.32 allows local attackers to access information with SamsungEPSS 0.1%CVE-2025-1865HIGHLocal Privilege Escalation in Virtual CloneDrive Kernel DriverEPSS 0.1%CVE-2023-21463MEDIUMImproper access control vulnerability in MyFiles application prior to versions 12.2.09.0 in Android 11, 13.1.03.501 in Android 12 and 14.1.0EPSS 0.1%CVE-2025-1390MEDIUMpam_cap: Fix potential configuration parsing errorEPSS 0.1%CVE-2024-27200MEDIUMImproper access control in some Intel(R) Granulate(TM) software before version 4.30.1 may allow a authenticated user to potentially enable eEPSS 0.1%CVE-2025-43518LOWA logic issue was addressed with improved checks. This issue is fixed in iOS 26.2 and iPadOS 26.2, macOS Sequoia 15.7.3, macOS Sonoma 14.8.3EPSS 0.1%CVE-2025-50777HIGHThe firmware of the AZIOT 2MP Full HD Smart Wi-Fi CCTV Home Security Camera (version V1.00.02) contains an Incorrect Access Control vulnerabEPSS 0.1%CVE-2024-39580MEDIUMDell PowerScale InsightIQ, versions 5.0 through 5.1, contains an Improper Access Control vulnerability. A high privileged attacker with locaEPSS 0.1%CVE-2026-14003MEDIUMInsufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a EPSS 0.1%CVE-2025-21105MEDIUMDell RecoverPoint for Virtual Machines 6.0.X contains a command execution vulnerability. A Low privileged malicious user with local access cEPSS 0.1%CVE-2026-44783MEDIUMDiscourse: Replying to a whisper lets non-whisperers create staff-only whisper postsEPSS 0.1%CVE-2024-39285MEDIUMImproper access control in UEFI firmware in some Intel(R) Server M20NTP Family may allow a privileged user to potentially enable informationEPSS 0.1%CVE-2025-46282MEDIUMThe issue was addressed with additional permissions checks. This issue is fixed in Safari 26.2, macOS Tahoe 26.2. An app may be able to acceEPSS 0.1%CVE-2025-43351MEDIUMA permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26.1. An app may be able to access protecEPSS 0.1%CVE-2026-3939MEDIUMInsufficient policy enforcement in PDF in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictions vEPSS 0.1%CVE-2022-32578MEDIUMImproper access control for the Intel(R) NUC Pro Software Suite before version 2.0.0.3 may allow an authenticated user to potentially enableEPSS 0.1%CVE-2026-22628MEDIUMAn improper access control vulnerability in Fortinet FortiSwitchAXFixed 1.0.0 through 1.0.1 may allow an authenticated admin to execute systEPSS 0.1%CVE-2022-40972MEDIUMImproper access control in some Intel(R) QAT drivers for Windows before version 1.9.0 may allow an authenticated user to potentially enable EPSS 0.1%CVE-2025-43309LOWA logic issue was addressed with improved checks. This issue is fixed in iOS 26 and iPadOS 26. An attacker with physical access to an iOS deEPSS 0.1%