Fallos del tipo CWE-284

4356 resultados
CVE-2025-59951CRITICALTermix' official Docker image contains an authentication bypass vulnerabilityEPSS 4.7%CVE-2023-0963HIGHSourceCodester Music Gallery Site POST Request Users.php access controlEPSS 4.7%CVE-2021-40113CRITICALCisco Catalyst PON Series Switches Optical Network Terminal VulnerabilitiesEPSS 4.6%CVE-2019-10970In Rockwell Automation PanelView 5510 (all versions manufactured before March 13, 2019 that have never been updated to v4.003, v5.002, or laEPSS 4.6%CVE-2021-4380CRITICALPinterest Automatic <= 4.14.3 - Unuathenticated Arbitrary Options UpdateEPSS 4.5%CVE-2024-38100HIGHWindows File Explorer Elevation of Privilege VulnerabilityEPSS 4.5%CVE-2019-1759MEDIUMCisco IOS XE Software Gigabit Ethernet Management Interface Access Control List Bypass VulnerabilityEPSS 4.4%CVE-2024-25736HIGHAn issue was discovered on WyreStorm Apollo VX20 devices before 1.3.58. Remote attackers can restart the device via a /device/reboot GET reqEPSS 4.3%CVE-2023-26408HIGHZDI-CAN-20712: AnnotsString Object prototype pollution Restrictions Bypass VulnerabilityEPSS 4.3%CVE-2023-26406HIGHZDI-CAN-20712: Net.HTTP.request URL restriction bypassEPSS 4.2%CVE-2018-15394CRITICALCisco Stealthwatch Management Console Authentication Bypass VulnerabilityEPSS 4.0%CVE-2021-26118Flaw in ActiveMQ Artemis OpenWire supportEPSS 4.0%CVE-2021-27258CRITICALThis vulnerability allows remote attackers to execute escalate privileges on affected installations of SolarWinds Orion Platform 2020.2. AutEPSS 4.0%CVE-2021-42359HIGHWP DSGVO Tools (GDPR) <= 3.1.23 Unauthenticated Arbitrary Post DeletionEPSS 3.9%CVE-2025-59199HIGHSoftware Protection Platform (SPP) Elevation of Privilege VulnerabilityEPSS 3.9%CVE-2024-46627CRITICALIncorrect access control in BECN DATAGERRY v2.2 allows attackers to execute arbitrary commands via crafted web requests.EPSS 3.9%CVE-2024-0712HIGHByzoro Smart S150 Management Platform userattea.php access controlEPSS 3.9%CVE-2022-21476HIGHVulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions EPSS 3.8%CVE-2019-15999MEDIUMCisco Data Center Network Manager JBoss EAP Unauthorized Access VulnerabilityEPSS 3.6%CVE-2019-10950Fujifilm FCR Capsula X/ Carbon X/ FCR XC-2, model versions CR-IR 357 FCR Carbon X, CR-IR 357 FCR XC-2, FCR-IR 357 FCR Capsula X provide inseEPSS 3.6%