Falhas do tipo CWE-284
4.460 resultadosCVE-2023-43487MEDIUMImproper access control in some Intel(R) CST before version 2.1.10300 may allow an authenticated user to potentially enable denial of servicEPSS 0.2%CVE-2026-3940MEDIUMInsufficient policy enforcement in DevTools in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictiEPSS 0.2%CVE-2024-36488MEDIUMImproper Access Control in some Intel(R) DSA before version 24.3.26.8 may allow an authenticated user to potentially enable escalation of prEPSS 0.2%CVE-2025-69284MEDIUMIn plane.io, a Guest User to a Workspace can still be able to see list of membersEPSS 0.2%CVE-2023-44292MEDIUM
Dell Repository Manager, 3.4.3 and prior, contains an Improper Access Control vulnerability in its installation module. A local low-privileEPSS 0.2%CVE-2026-5171MEDIUMImproper access control in the entry activity log feature in Devolutions Server allows an authenticated user with access to an entry but witEPSS 0.2%CVE-2024-54556LOWThis issue was addressed through improved state management. This issue is fixed in iOS 18.1 and iPadOS 18.1. A user may be able to view restEPSS 0.2%CVE-2023-44282MEDIUM
Dell Repository Manager, 3.4.3 and prior, contains an Improper Access Control vulnerability in its installation module. A local low-privileEPSS 0.2%CVE-2026-11890MEDIUMImproper access control in PAM account discovery results in Devolutions
Server 2026.2.5, 2026.1.21 allows an authenticated user to retrieveEPSS 0.2%CVE-2025-43412MEDIUMA file quarantine bypass was addressed with additional checks. This issue is fixed in macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS TahoeEPSS 0.2%CVE-2022-48683HIGHAn access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Ventura 13. An app may be able to break outEPSS 0.2%CVE-2023-35121HIGHImproper access control in the Intel(R) oneAPI DPC++/C++ Compiler before version 2022.2.1 for some Intel(R) oneAPI Toolkits before version EPSS 0.2%CVE-2022-38466—A vulnerability has been identified in CoreShield One-Way Gateway (OWG) Software (All versions < V2.2). The default installation sets insecuEPSS 0.2%CVE-2026-8545LOWObject corruption in Compositing in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer processEPSS 0.2%CVE-2025-2954MEDIUMmannaandpoem OpenManus File file_saver.py execute access controlEPSS 0.2%CVE-2024-21828MEDIUMImproper access control in some Intel(R) Ethernet Controller Administrative Tools software before version 28.3 may allow an authenticated usEPSS 0.2%CVE-2025-64715MEDIUMCilium with misconfigured toGroups in policies can lead to unrestricted egress trafficEPSS 0.2%CVE-2023-25595MEDIUMSensitive Information Disclosure in ClearPass OnGuard Ubuntu AgentEPSS 0.2%CVE-2024-44210LOWThis issue was addressed with improved permissions checking. This issue is fixed in macOS Sequoia 15.1. An app may be able to access user-seEPSS 0.2%CVE-2026-28230MEDIUMIn SteVe, any authenticated charger can terminate any other charger's active transaction (missing ownership verification on StopTransaction)EPSS 0.2%