CWE-284 (访问控制不恰当) — Vulnerability Class 2041

2041 vulnerabilities classified as CWE-284 (访问控制不恰当). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2023-46661	Improper Access Control in Sielco PolyEco1000 — PolyEco1000	9.8	Critical	2023-10-26
CVE-2023-45228	Sielco Radio Link and Analog FM Transmitters Improper Access Control — Analog FM transmitter	6.5	Medium	2023-10-26
CVE-2023-46666	Elastic Sharepoint Online Python Connector Improper Access Control — Elastic Sharepoint Online Python Connector	5.3	Medium	2023-10-26
CVE-2023-42769	Sielco Radio Link and Analog FM Transmitters Improper Access Control — Analog FM transmitter	9.8	Critical	2023-10-26
CVE-2023-30969	Palantir Tiles missing authentication on API endpoints — com.palantir.tiles:tiles	8.2	High	2023-10-25
CVE-2023-45844	Bosch ctrlX HMI Web Panel WR21 安全漏洞 — ctrlX HMI Web Panel - WR21 (WR2107)	6.7	-	2023-10-25
CVE-2023-20261	Cisco Catalyst 安全漏洞 — Cisco SD-WAN vManage	6.5	Medium	2023-10-18
CVE-2023-43079	Dell OpenManage Server Administrator 访问控制错误漏洞 — Dell OpenManage Server Administrator	7.3	High	2023-10-13
CVE-2023-24479	Yifan YF325 授权问题漏洞 — YF325	9.8	Critical	2023-10-11
CVE-2023-32632	Yifan YF325 命令注入漏洞 — YF325	8.8	High	2023-10-11
CVE-2023-36790	Windows RDP Encoder Mirror Driver Elevation of Privilege Vulnerability — Windows Server 2008 Service Pack 2	7.8	High	2023-10-10
CVE-2023-36561	Azure DevOps Server Elevation of Privilege Vulnerability — Azure DevOps Server 2022.0.1	7.3	High	2023-10-10
CVE-2023-36722	Active Directory Domain Services Information Disclosure Vulnerability — Windows 10 Version 1809	4.4	Medium	2023-10-10
CVE-2023-36725	Windows Kernel Elevation of Privilege Vulnerability — Windows 10 Version 1809	7.8	High	2023-10-10
CVE-2023-41772	Win32k Elevation of Privilege Vulnerability — Windows 10 Version 1809	7.8	High	2023-10-10
CVE-2023-41679	Fortinet FortiManager 安全漏洞 — FortiManager	7.7	High	2023-10-10
CVE-2023-33301	Fortinet FortiOS 安全漏洞 — FortiOS	6.5	Medium	2023-10-10
CVE-2023-37194	Siemens SIMATIC 多款产品访问控制错误漏洞 — SIMATIC CP 1604	6.7	Medium	2023-10-10
CVE-2023-36820	micronaut security has invalid IdTokenClaimsValidator logic on aud — micronaut-security	4.8	Medium	2023-10-09
CVE-2023-43696	SICK APU 代码问题漏洞 — APU0200	8.2	High	2023-10-09
CVE-2023-36465	Decidim has broken access control in templates — decidim	9.1	Critical	2023-10-06
CVE-2023-43072	Dell SmartFabric Storage Software 访问控制错误漏洞 — Dell SmartFabric Storage Software	4.4	Medium	2023-10-05
CVE-2023-1832	Improper authorization check in the server component — candlepin-4.3.7	6.8	Medium	2023-10-04
CVE-2023-0506	ByDemes Group Airspace CCTV Web Service Improper Access Control — Airspace CCTV Web Service	8.8	High	2023-10-03
CVE-2023-5353	Improper Access Control in salesagility/suitecrm — salesagility/suitecrm	5.4	-	2023-10-03
CVE-2023-24844	Improper Access Control in Core — Snapdragon	8.4	High	2023-10-03
CVE-2023-21673	Improper Access Control in Kernel — Snapdragon	8.7	High	2023-10-03
CVE-2023-5288	SICK SIM1012 安全漏洞 — SIM1012	9.8	Critical	2023-09-29
CVE-2023-32477	Dell Common Event Enabler 访问控制错误漏洞 — Common Event Enabler	7.8	High	2023-09-29
CVE-2023-20223	Cisco DNA Center 安全漏洞 — Cisco Digital Network Architecture Center (DNA Center)	8.6	High	2023-09-27

Vulnerabilities classified as CWE-284 (访问控制不恰当) represent 2041 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-284 (访问控制不恰当) — Vulnerability Class 2041