Fallos del tipo CWE-863

2093 resultados
CVE-2025-24421MEDIUMAdobe Commerce | Incorrect Authorization (CWE-863)EPSS 0.5%CVE-2024-11669MEDIUMIncorrect Authorization in GitLabEPSS 0.5%CVE-2024-48769CRITICALAn issue in BURG-WCHTER KG de.burgwachter.keyapp.app 4.5.0 allows a remote attacker to obtain sensitve information via the firmware update pEPSS 0.5%CVE-2024-3404MEDIUMImproper Access Control in gaizhenbiao/chuanhuchatgptEPSS 0.5%CVE-2023-4379HIGHIncorrect Authorization in GitLabEPSS 0.5%CVE-2024-54662CRITICALDante 1.4.0 through 1.4.3 (fixed in 1.4.4) has incorrect access control for some sockd.conf configurations involving socksmethod.EPSS 0.5%CVE-2025-36157CRITICALIBM Engineering Lifecycle Management incorrect authorizationEPSS 0.5%CVE-2025-27188MEDIUMAdobe Commerce | Incorrect Authorization (CWE-863)EPSS 0.5%CVE-2022-46160MEDIUMTuleap dashboards vulnerable to Incorrect AuthorizationEPSS 0.5%CVE-2022-45353MEDIUMWordPress Betheme theme <= 26.6.1 is vulnerable to Broken Access ControlEPSS 0.5%CVE-2022-45168MEDIUMAn issue was discovered in LIVEBOX Collaboration vDesk through v018. A Bypass of Two-Factor Authentication can occur under the /login/backupEPSS 0.5%CVE-2023-3484HIGHIncorrect Authorization in GitLabEPSS 0.5%CVE-2023-24505MEDIUMMilesight NCR/Camera CWE-200: Exposure of Sensitive InformationEPSS 0.5%CVE-2024-7711MEDIUMAn Incorrect Authorization vulnerability was identified in GitHub Enterprise Server, allowing an attacker to update the title, assignees, anEPSS 0.5%CVE-2026-22595HIGHGhost has Staff Token permission bypassEPSS 0.5%CVE-2024-3504HIGHImproper Access Control in lunary-ai/lunaryEPSS 0.5%CVE-2023-28270MEDIUMWindows Lock Screen Security Feature Bypass VulnerabilityEPSS 0.5%CVE-2024-7265HIGHPrivilege Escalation in EZD RPEPSS 0.5%CVE-2024-57680MEDIUMAn access control issue in the component form2PortriggerRule.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers EPSS 0.5%CVE-2024-57681MEDIUMAn access control issue in the component form2alg.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers to set the EPSS 0.5%