Falhas do tipo CWE-284
4.461 resultadosCVE-2023-25771MEDIUMImproper access control for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable denial of service via local acEPSS 0.1%CVE-2025-52963MEDIUMJunos OS: A low-privileged user can disable an interfaceEPSS 0.1%CVE-2024-23351HIGHImproper Access Control in Graphics LinuxEPSS 0.1%CVE-2026-28378LOWCross-Organization Public Dashboard Deletion via Missing Org IsolationEPSS 0.1%CVE-2026-34860MEDIUMAccess control vulnerability in the memo module.
Impact: Successful exploitation of this vulnerability will affect availability and confidenEPSS 0.1%CVE-2025-30731LOWVulnerability in the Oracle Applications Technology Stack product of Oracle E-Business Suite (component: Configuration). Supported versionsEPSS 0.1%CVE-2026-36180MEDIUMA lack of runtime integrity in GNCC GP5 v7.1.76 allows physically-proximate attackers to bypass file system read-only protections and modifyEPSS 0.1%CVE-2025-43451MEDIUMA permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS Tahoe 26. An app may be able to access sensiEPSS 0.1%CVE-2026-25966MEDIUMImageMagick's Security Policy Bypass through config/policy-secure.xml via "fd handler" leads to stdin/stdout accessEPSS 0.1%CVE-2023-31341HIGHInsufficient
validation of the Input Output Control (IOCTL) input buffer in AMD μProf may
allow an authenticated attacker to cause an out-ofEPSS 0.1%CVE-2024-39609HIGHImproper Access Control in UEFI firmware for some Intel(R) Server Board M70KLP may allow a privileged user to potentially enable escalation EPSS 0.1%CVE-2025-24313MEDIUMImproper access control for some Device Plugins for Kubernetes software maintained by Intel before version 0.32.0 may allow a privileged useEPSS 0.1%CVE-2026-28682MEDIUMGokapi: Data Leak in Upload Status StreamEPSS 0.1%CVE-2026-4218LOWmyAEDES App aedes.me.beta EngageBayUtils.java information disclosureEPSS 0.1%CVE-2025-36909MEDIUMInformation disclosureEPSS 0.1%CVE-2026-21635MEDIUMAn Improper Access Control could allow a malicious actor in Wi-Fi range to the EV Station Lite (v1.5.2 and earlier) to use WiFi AutoLink feaEPSS 0.1%CVE-2022-40539HIGHImproper Validation of Array Index in Automotive Android OSEPSS 0.1%CVE-2024-34543MEDIUMImproper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalatEPSS 0.1%CVE-2022-38973LOWImproper access control for some Intel(R) Arc(TM) graphics cards A770 and A750 Limited Edition sold between October of 2022 and December of EPSS 0.1%CVE-2025-32037LOWImproper access control for some Intel(R) PresentMon before version 2.3.1 within Ring 3: User Applications may allow a denial of service. NeEPSS 0.1%