Fallos del tipo CWE-863
2111 resultadosCVE-2024-47102MEDIUMIBM AIX denial of serviceEPSS 0.1%CVE-2026-32915CRITICALOpenClaw < 2026.3.11 - Sandbox Boundary Bypass via Subagent Control SurfaceEPSS 0.1%CVE-2024-7457HIGHmacOS Stash network-management utility: Unauthorized Manipulation of System Network PreferencesEPSS 0.1%CVE-2023-45793MEDIUMA vulnerability has been identified in Siveillance Control (All versions >= V2.8 < V3.1.1). The affected product does not properly check theEPSS 0.1%CVE-2026-4273LOWInsufficient token rotation validation in remote cluster invite confirmationEPSS 0.1%CVE-2026-35586MEDIUMAuthorization Bypass for SSL Certificate/Key Configuration Due to Option Name Mismatch in pyload-ngEPSS 0.1%CVE-2026-4274MEDIUMInsufficient authorization in shared channel membership sync grants team-level access instead of channel-level accessEPSS 0.1%CVE-2022-31252MEDIUMpermissions: chkstat does not check for group-writable parent directories or target files in safeOpen()EPSS 0.1%CVE-2026-32035MEDIUMOpenClaw < 2026.3.2 - Missing Owner Flag Validation in Discord Voice Transcript HandlerEPSS 0.1%CVE-2024-36055MEDIUMHw64.sys in Marvin Test HW.exe before 5.0.5.0 allows unprivileged user-mode processes to arbitrarily map physical memory with read/write accEPSS 0.1%CVE-2026-1553MEDIUMDrupal Canvas - Moderately critical - Access bypass - SA-CONTRIB-2026-006EPSS 0.1%CVE-2026-28735MEDIUMGitHub OAuth Scope ValidationEPSS 0.1%CVE-2025-43917HIGHIn Pritunl Client before 1.3.4220.57, an administrator with access to /Applications can escalate privileges after uninstalling the product. EPSS 0.1%CVE-2025-66406MEDIUMImproper Authorization Check for SSH Certificate RevocationEPSS 0.1%CVE-2025-0360HIGHDuring an annual penetration test conducted on behalf of Axis Communication, Truesec discovered a flaw in the VAPIX Device Configuration fraEPSS 0.1%CVE-2026-47910MEDIUMDreamweaver Desktop | Incorrect Authorization (CWE-863)EPSS 0.1%CVE-2024-45328HIGHAn incorrect authorization vulnerability [CWE-863] in FortiSandbox 4.4.0 through 4.4.6 may allow a low priviledged administrator to execute EPSS 0.1%CVE-2025-25040LOWFailure to Properly Enforce Port ACLs on CPU generated packets in CX 9300 SwitchesEPSS 0.1%CVE-2025-68140MEDIUMEVerest allows null session ID to bypass session ID verificationEPSS 0.1%CVE-2026-26289HIGHSubnet Solutions PowerSYSTEM Center Incorrect AuthorizationEPSS 0.1%