Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-284 (访问控制不恰当) — Vulnerability Class 2041

2041 vulnerabilities classified as CWE-284 (访问控制不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2020-3312 Cisco Firepower Threat Defense Software Information Disclosure Vulnerability — Cisco Firepower Threat Defense Software 7.5 -2020-05-06
CVE-2020-3186 Cisco Firepower Threat Defense Software Management Access List Bypass Vulnerability — Cisco Firepower Threat Defense Software 5.3 -2020-05-06
CVE-2020-1732 Red Hat WildFly Elytron 输入验证错误漏洞 — Soteria 4.2 Medium2020-05-04
CVE-2020-8157 Ubiquiti Networks UniFi Cloud Key 访问控制错误漏洞 — UniFi Cloud Key Gen2, Cloud Key Gen2 plus 6.8 -2020-05-02
CVE-2020-11028 Unauthenticated disclosure of certain private posts in WordPress — WordPress 5.8 Medium2020-04-30
CVE-2020-10641 Inductive Automation Ignition 访问控制错误漏洞 — Ignition 8 Gateway 7.5 -2020-04-28
CVE-2020-5287 Improper access control on customers search in PrestaShop — PrestaShop 4.1 Medium2020-04-20
CVE-2020-5288 Improper access control on product attributes page in PrestaShop — PrestaShop 4.1 Medium2020-04-20
CVE-2020-5293 Improper access control on product page with combinations, attachments and specific prices in PrestaShop — PrestaShop 6.5 Medium2020-04-20
CVE-2020-5279 Improper Access Control for certain legacy controller in PrestaShop — PrestaShop 4.1 Medium2020-04-20
CVE-2020-7278 McAfee firewall rules not enforced correctly — McAfee Endpoint Security (ENS) 7.4 High2020-04-15
CVE-2019-1866 Cisco Webex Business Suite Host Header Value Integrity Vulnerability — Cisco Webex Business Suite 3.1 Low2020-04-13
CVE-2020-3126 Cisco Webex Meetings Multimedia Viewer Vulnerability — Cisco Webex Meetings Multimedia Viewer 3.0 Low2020-04-13
CVE-2020-5302 unprivileged user can access priviledged action in MH-WikiBot — MH-WikiBot 8.2 High2020-04-07
CVE-2019-3942 Advantech WebAccess 访问控制错误漏洞 — Advantech WebAccess 7.5 -2020-04-01
CVE-2020-8139 Nextcloud Server 访问控制错误漏洞 — Nextcloud Server 7.5 -2020-03-20
CVE-2020-7253 Improper access control vulnerability in McAfee Agent — McAfee Agent (MA) 5.7 Medium2020-03-12
CVE-2020-6971 Emerson Electric ValveLink 访问控制错误漏洞 — Emerson ValveLink 7.8 -2020-03-05
CVE-2019-5162 MOXA AWK-3131A 访问控制错误漏洞 — Moxa 8.8 -2020-02-25
CVE-2019-5136 Moxa AWK-3131A访问控制错误漏洞 — Moxa 8.8 -2020-02-25
CVE-2020-5244 Private data exposure via REST API in BuddyPress — BuddyPress 8.0 High2020-02-24
CVE-2020-5242 openHAB exec add-ons allow remote arbitrary command execution — openhab-addons 7.7 High2020-02-20
CVE-2019-18998 Asset Suite Direct Object Reference Access — Asset Suite 7.1 High2020-02-17
CVE-2019-6193 Lenovo XClarity Administrator 信息泄露漏洞 — XClarity Administrator (LXCA) 7.5 High2020-02-14
CVE-2019-6744 Xiaomi Mi6 Browser 授权问题漏洞 — Knox 4.0 -2020-02-10
CVE-2019-15615 Nextcloud 授权问题漏洞 — Nextcloud Android 6.1 -2020-02-04
CVE-2020-8121 Nextcloud Server 访问控制错误漏洞 — Nextcloud Server 6.5 -2020-02-04
CVE-2020-8122 Nextcloud Server 输入验证错误漏洞 — Nextcloud server 4.3 -2020-02-04
CVE-2019-15590 GitLab 安全漏洞 — GitLab EE 7.5 -2020-01-28
CVE-2019-5474 GitLab 访问控制错误漏洞 — GitLab EE 6.5 -2020-01-28

Vulnerabilities classified as CWE-284 (访问控制不恰当) represent 2041 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.