Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-284 (访问控制不恰当) — Vulnerability Class 2041

2041 vulnerabilities classified as CWE-284 (访问控制不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-21518 SAMSUNG Mobile devices 安全漏洞 — Samsung SearchWidget 4.4 Medium2023-06-28
CVE-2023-3431 Improper Access Control in plantuml/plantuml — plantuml/plantuml 5.4 -2023-06-27
CVE-2023-35927 Nextcloud system addressbooks can be modified by malicious trusted server — security-advisories 7.6 High2023-06-23
CVE-2023-35173 End-to-End encrypted file-drops can be made inaccessible — security-advisories 5.7 Medium2023-06-23
CVE-2023-35167 When setting EntityOptions.apiPrefilter to a function, the filter is not applied to API requests for a resource by Id — remult 5.0 Medium2023-06-23
CVE-2023-3304 Improper Access Control in admidio/admidio — admidio/admidio 5.4 -2023-06-23
CVE-2023-3303 Improper Access Control in admidio/admidio — admidio/admidio 5.4 -2023-06-23
CVE-2023-1862 Remote access to warp-svc.exe in Cloudflare WARP — WARP Client 7.3 High2023-06-20
CVE-2023-3306 Ruijie RG-EW1200G Admin Password app.09df2a9e44ab48766f5f.js access control — RG-EW1200G 7.3 High2023-06-18
CVE-2023-3305 C-DATA Web Management System User Creation access control — Web Management System 7.3 High2023-06-18
CVE-2023-28809 Hikvision Access Control Products 授权问题漏洞 — DS-K1T804AXX 7.5 High2023-06-15
CVE-2023-28810 Hikvision Access Control 安全漏洞 — DS-K1T804AXX 4.3 Medium2023-06-15
CVE-2023-32009 Windows Collaborative Translation Framework Elevation of Privilege Vulnerability — Windows 10 Version 1809 8.8 High2023-06-13
CVE-2022-39946 Fortinet FortiNAC 安全漏洞 — FortiNAC 7.2 High2023-06-13
CVE-2023-24546 Arista Networks CloudVision Portal 安全漏洞 — CloudVision 7.5 -2023-06-13
CVE-2023-2159 CMP – Coming Soon & Maintenance <= 4.1.7 - Maintenance Mode Bypass — CMP – Coming Soon & Maintenance Plugin by NiteoThemes 5.3 Medium2023-06-09
CVE-2021-4380 Pinterest Automatic <= 4.14.3 - Unuathenticated Arbitrary Options Update — Pinterest Automatic 9.8 Critical2023-06-07
CVE-2020-36721 Epsilon Framework Themes (Various Versions) - Unauthenticated Plugin Activation/Deactivation — Brilliance 6.5 Medium2023-06-07
CVE-2021-4364 JobSearch WP Job Board < = 1.8.1 - Missing Authorization on jobsearch_update_job_import_schedule_call() function — JobSearch WP Job Board 4.3 Medium2023-06-07
CVE-2021-4360 Controlled Admin Access < 1.5.6 - Privilege Escalation — Controlled Admin Access 9.9 Critical2023-06-07
CVE-2021-4361 JobSearch WP Job Board <= 1.8.1 - Missing Authorization to Arbitrary Options Update — JobSearch WP Job Board 8.8 High2023-06-07
CVE-2021-4352 JobSearch WP Job Board <= 1.8.1 - Missing Authorization to Settings Change — JobSearch WP Job Board 5.3 Medium2023-06-07
CVE-2020-36700 Page Builder: KingComposer < 2.9.4 - Authorization Bypass due to Improper Access Control — Page Builder: KingComposer – Free Drag and Drop page builder by King-Theme 8.8 High2023-06-07
CVE-2020-36699 Quick Page/Post Redirect Plugin <= 5.1.9 - Redirect Security Bypass — Quick Page/Post Redirect Plugin 4.3 Medium2023-06-07
CVE-2021-4338 404 to 301 <= 3.0.7 - Missing Authorization to Redirect Creation — 404 to 301 – Redirect, Log and Notify 404 Errors 6.4 Medium2023-06-07
CVE-2023-2183 Grafana 安全漏洞 — Grafana 4.1 Medium2023-06-06
CVE-2023-21670 Improper Access control in GPU Subsystem — Snapdragon 7.8 High2023-06-06
CVE-2022-40529 Improper access control in Kernel — Snapdragon 7.1 High2023-06-06
CVE-2023-3099 KylinSoft youker-assistant Arbitrary File dbus.SystemBus delete_file access control — youker-assistant 4.4 Medium2023-06-05
CVE-2023-3096 KylinSoft kylin-software-properties changedSource access control — kylin-software-properties 5.3 Medium2023-06-05

Vulnerabilities classified as CWE-284 (访问控制不恰当) represent 2041 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.