CWE-284 (访问控制不恰当) — Vulnerability Class 2041

2041 vulnerabilities classified as CWE-284 (访问控制不恰当). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2020-3448	Cisco Cyber Vision Center Software Access Control Bypass Vulnerability — Cisco Cyber Vision	5.3	-	2020-08-17
CVE-2020-5396	JMX Insecure Default Configuration in GemFire — VMware Tanzu GemFire for VMs	9.8	-	2020-07-31
CVE-2020-10731	OpenStack openstack-tripleo-heat-templates 访问控制错误漏洞 — nova_libvirt container provided by the Red Hat OpenStack Platform	8.8	-	2020-07-31
CVE-2020-10930	NETGEAR R6700 安全漏洞 — R6700	6.5	-	2020-07-28
CVE-2020-8207	Citrix Systems Workspace App 授权问题漏洞 — Citrix Workspace App for Windows	8.8	-	2020-07-24
CVE-2020-15102	Improper access control on dashboard form in PrestaShop — dashproducts	6.5	Medium	2020-07-21
CVE-2020-3144	Cisco RV110W, RV130, RV130W, and RV215W Routers Authentication Bypass Vulnerability — Cisco RV130W Wireless-N Multifunction VPN Router Firmware	9.8	-	2020-07-16
CVE-2020-10288	RVD#3327: No authentication required for accesing ABB IRC5 FTP server — IRB140	9.8	-	2020-07-15
CVE-2020-14499	Advantech Iview 安全漏洞 — Advantech iView	9.1	-	2020-07-15
CVE-2020-7578	Siemens Camstar Enterprise Platform和Opcenter Execution Core 访问控制错误漏洞 — Camstar Enterprise Platform	8.1	-	2020-07-14
CVE-2020-8196	Citrix System SDWAN WAN-OP 授权问题漏洞 — Citrix ADC, Citrix Gateway, Citrix SDWAN WAN-OP	4.3	-	2020-07-10
CVE-2020-8193	Citrix System SDWAN WAN-OP 授权问题漏洞 — Citrix ADC, Citrix Gateway, Citrix SDWAN WAN-OP	8.2	-	2020-07-10
CVE-2020-8179	Nextcloud Deck 访问控制错误漏洞 — Nextcloud Deck	6.2	-	2020-07-02
CVE-2020-15079	Improper access control in PrestaShop — PrestaShop	6.4	Medium	2020-07-02
CVE-2020-2500	QNAP Systems Helpdesk 信任管理问题漏洞 — Helpdesk	9.8	Critical	2020-07-01
CVE-2020-12024	百特 ExactaMix EM2400 安全漏洞 — Baxter ExactaMix EM 2400 & EM 1200	6.1	-	2020-06-29
CVE-2020-10278	RVD#2561: Unprotected BIOS allows user to boot from live OS image. — MiR100	4.6	-	2020-06-24
CVE-2020-4062	Improper Access Control in Conjur OSS Helm Chart — Conjur OSS Helm Chart	8.7	High	2020-06-22
CVE-2020-3245	Cisco Smart Software Manager On-Prem Improper Access Control Vulnerability — Cisco Smart Software Manager On-Prem	5.3	-	2020-06-18
CVE-2020-3364	Cisco IOS XR Software Standby Route Processor Gigabit Ethernet Management Interface Access Control List Bypass Vulnerability — Cisco IOS XR Software	5.3	-	2020-06-18
CVE-2020-3231	Cisco IOS Software for Catalyst 2960-L Series Switches and Catalyst CDB-8P Switches 802.1X Authentication Bypass Vulnerability — Cisco IOS 15.2(5a)E	5.4	-	2020-06-03
CVE-2020-12493	Critical Vulnerability in SWARCO CPU LS4000 — CPU LS4000	10.0	Critical	2020-05-29
CVE-2020-6774	Kiosk Mode Breakout in Bosch Recording Station — Bosch Recording Station	9.3	Critical	2020-05-27
CVE-2020-9046	Kantech EntraPass Security Management Software - System Permissions Vulnerability — Kantech EntraPass Security Management Software Special Edition versions 8.22 and prior	8.8	High	2020-05-26
CVE-2020-2025	Kata Containers - Cloud Hypervisor guests persist filesystem changes to the underlying host image file — Kata Containers	8.8	High	2020-05-19
CVE-2020-11931	Ubuntu modifications to pulseaudio to provide snap security enforcement could be unloaded — pulseaudio	3.3	Low	2020-05-15
CVE-2020-10612	Opto 22 SoftPAC Project 访问控制错误漏洞 — Opto 22 SoftPAC Project	9.1	-	2020-05-14
CVE-2020-8153	Nextcloud Groupfolders app 访问控制错误漏洞 — Nextcloud Groupfolders	6.5	-	2020-05-12
CVE-2020-3253	Cisco Firepower Threat Defense Software Shell Access Vulnerability — Cisco Firepower Threat Defense Software	7.8	-	2020-05-06
CVE-2020-3329	Cisco IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Role-Based Access Control Vulnerability — Cisco UCS Director	4.3	-	2020-05-06

Vulnerabilities classified as CWE-284 (访问控制不恰当) represent 2041 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-284 (访问控制不恰当) — Vulnerability Class 2041