Falhas do tipo CWE-863

2.098 resultados
CVE-2023-37492MEDIUMMissing Authorization check in SAP NetWeaver AS ABAP and ABAP PlatformEPSS 0.4%CVE-2026-42604MEDIUMActual has an OpenID `client_secret` Disclosure via Broken Authorization Guard in `/openid/config`EPSS 0.4%CVE-2023-24471HIGHInformation disclosure via the debug function in assertions in Guardian/CMC before 22.6.2EPSS 0.4%CVE-2024-10273MEDIUMImproper Privilege Management in lunary-ai/lunaryEPSS 0.4%CVE-2023-3979LOWIncorrect Authorization in GitLabEPSS 0.4%CVE-2023-25924MEDIUMIBM Security Key Lifecycle Manager improper authorizationEPSS 0.4%CVE-2024-10219MEDIUMIncorrect Authorization in GitLabEPSS 0.4%CVE-2026-24749MEDIUMSilverstripe Assets Module has a DBFile::getURL() permission bypassEPSS 0.4%CVE-2025-48948HIGHNavidrome Transcoding Permission Bypass Vulnerability ReportEPSS 0.4%CVE-2026-33421HIGHParse Server: LiveQuery bypasses CLP pointer permission enforcementEPSS 0.4%CVE-2023-3443LOWIncorrect Authorization in GitLabEPSS 0.4%CVE-2026-42313HIGHpyload-ng: non-admin SETTINGS users can redirect all outbound traffic through an attacker-controlled proxyEPSS 0.4%CVE-2024-21735HIGHImproper Authorization check in SAP LT Replication ServerEPSS 0.4%CVE-2023-3511LOWIncorrect Authorization in GitLabEPSS 0.4%CVE-2024-45877MEDIUMbaltic-it TOPqw Webportal v1.35.283.2 is vulnerable to Incorrect Access Control in the User Management function in /Apps/TOPqw/BenutzerManagEPSS 0.4%CVE-2018-8790Check Point ZoneAlarm version 15.3.064.17729 and below expose a WCF service that can allow a local low privileged user to execute arbitrary EPSS 0.4%CVE-2024-54124HIGHIn Click Studios Passwordstate before build 9920, there is a potential permission escalation on the edit folder screen.EPSS 0.4%CVE-2023-28325MEDIUMAn improper authorization vulnerability exists in Rocket.Chat <6.0 that could allow a hacker to manipulate the rid parameter and change the EPSS 0.4%CVE-2024-12539MEDIUMElasticsearch Incorrect AuthorizationEPSS 0.4%CVE-2024-26145MEDIUMUninvited user is able to join and mark the attendance of the the private eventEPSS 0.4%