Fallos del tipo CWE-284

4427 resultados
CVE-2025-3667MEDIUMTOTOLINK A3700R cstecgi.cgi setUPnPCfg access controlEPSS 0.5%CVE-2021-46903MEDIUMAn issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. An aEPSS 0.5%CVE-2024-25121HIGHImproper Access Control Persisting File Abstraction Layer Entities via Data Handler in TYPO3EPSS 0.5%CVE-2025-3666MEDIUMTOTOLINK A3700R cstecgi.cgi setDdnsCfg access controlEPSS 0.5%CVE-2021-45730MEDIUMJFrog Artifactory prior to 7.31.10, is vulnerable to Broken Access Control where a Project Admin is able to create, edit and delete RepositoEPSS 0.5%CVE-2024-54038MEDIUMAdobe Connect | Improper Access Control (CWE-284)EPSS 0.5%CVE-2018-25092MEDIUMVaerys-Dawn DiscordSailv2 Command Mention access controlEPSS 0.5%CVE-2023-46664HIGHImproper Access Control in Sielco PolyEco1000EPSS 0.5%CVE-2018-25093MEDIUMVaerys-Dawn DiscordSailv2 Tag access controlEPSS 0.5%CVE-2025-54875CRITICALFreshRSS: Unauthorized creation of admin user when registration is enabledEPSS 0.5%CVE-2025-0213MEDIUMCampcodes Project Management System update_forms.php unrestricted uploadEPSS 0.5%CVE-2025-2688MEDIUMTOTOLINK A3000RU Syslog Configuration File ExportSyslog.sh access controlEPSS 0.5%CVE-2021-40699HIGHColdFusion CFIDE Improper Access Control Leads To Privilege EscalationEPSS 0.5%CVE-2023-21922MEDIUMVulnerability in the Oracle Health Sciences InForm product of Oracle Health Sciences Applications (component: Core). Supported versions thaEPSS 0.5%CVE-2021-28511MEDIUMThis advisory documents the impact of an internally found vulnerability in Arista EOS for security ACL bypass. The impact of this vulnerability is that the security ACL drop rule might be bypassed if a NAT ACL rule filter with permit action matches t ...EPSS 0.5%CVE-2024-23920HIGHChargePoint Home Flex Improper Access ControlEPSS 0.5%CVE-2024-43530HIGHWindows Update Stack Elevation of Privilege VulnerabilityEPSS 0.5%CVE-2025-52079HIGHThe administrator password setting of the D-Link DIR-820L 1.06B02 is has Improper Access Control and is vulnerable to Unverified Password ChEPSS 0.5%CVE-2023-35173MEDIUMEnd-to-End encrypted file-drops can be made inaccessibleEPSS 0.5%CVE-2024-13201MEDIUMwander-chu SpringBoot-Blog Admin Attachment AttachtController.java upload unrestricted uploadEPSS 0.5%