Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-284 (访问控制不恰当) — Vulnerability Class 2041

2041 vulnerabilities classified as CWE-284 (访问控制不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-24916 Improper Access Control leads to Local Priviledge Escalation — Network Monitor 7.0 High2025-05-23
CVE-2025-3580 Grafana OSS 安全漏洞 — Grafana 5.5 Medium2025-05-23
CVE-2025-20242 Cisco Unified Contact Center Enterprise 访问控制错误漏洞 — Cisco Unified Contact Center Enterprise 6.5 Medium2025-05-21
CVE-2025-47794 Nextcloud Server vulnerable to insecure temporary file creation, race with write access and permission — security-advisories 2.6 Low2025-05-16
CVE-2025-47792 Nextcloud Desktop 3rdparty applications can create share links via socket API — security-advisories 5.0 Medium2025-05-16
CVE-2025-2306 Improper Access Control vulnerability in LIVE CONTRACT — LIVE CONTRACT 5.9 Medium2025-05-16
CVE-2025-47161 Microsoft Defender for Endpoint Elevation of Privilege Vulnerability — Microsoft Defender for Endpoint for Linux 7.8 High2025-05-15
CVE-2025-43563 ColdFusion | Improper Access Control (CWE-284) — ColdFusion 9.1 Critical2025-05-13
CVE-2025-29973 Microsoft Azure File Sync Elevation of Privilege Vulnerability — Azure File Sync 7.0 High2025-05-13
CVE-2025-33072 Microsoft msagsfeedback.azurewebsites.net Information Disclosure Vulnerability — Microsoft msagsfeedback.azurewebsites.net 8.1 High2025-05-08
CVE-2025-20223 Cisco Catalyst Center 访问控制错误漏洞 — Cisco Digital Network Architecture Center (DNA Center) 4.7 Medium2025-05-07
CVE-2025-20190 Cisco IOS XE Wireless Controller Software 访问控制错误漏洞 — Cisco IOS XE Software 6.5 Medium2025-05-07
CVE-2025-20137 Cisco IOS 访问控制错误漏洞 — IOS 4.7 Medium2025-05-07
CVE-2025-46816 goshs route not protected, allows command execution — goshs 9.8AICriticalAI2025-05-06
CVE-2025-21470 Improper Access Control in Camera Driver — Snapdragon 7.8 High2025-05-06
CVE-2025-21469 Improper Access Control in Camera Driver — Snapdragon 7.8 High2025-05-06
CVE-2024-49842 Improper Access Control in Hypervisor — Snapdragon 7.8 High2025-05-06
CVE-2025-46589 Huawei HarmonyOS 安全漏洞 — HarmonyOS 4.4 Medium2025-05-06
CVE-2025-46588 Huawei HarmonyOS 安全漏洞 — HarmonyOS 4.4 Medium2025-05-06
CVE-2025-4316 Devolutions Server 安全漏洞 — Server 4.3AIMediumAI2025-05-05
CVE-2025-4269 TOTOLINK A720R Log cstecgi.cgi access control — A720R 6.5 Medium2025-05-05
CVE-2024-30146 HCL Domino Leap is affected by improper access control — HCL Domino Leap 4.1 Medium2025-04-30
CVE-2025-24887 OpenCTI bypass of protected attribute update — opencti 6.3 Medium2025-04-30
CVE-2025-46331 OpenFGA Authorization Bypass — openfga 9.8AICriticalAI2025-04-30
CVE-2025-32376 Discourse DM limits aren’t always properly enforced — discourse 4.3AIMediumAI2025-04-30
CVE-2025-27134 Privilege escalation in Joplin server via user patch endpoint — joplin 8.8 High2025-04-30
CVE-2025-4119 Weitong Mall Product Statistics queryTotal access control — Mall 5.3 Medium2025-04-30
CVE-2025-4118 Weitong Mall Product History historyList access control — Mall 5.3 Medium2025-04-30
CVE-2025-4067 ScriptAndTools Online-Travling-System viewpackage.php access control — Online-Travling-System 5.3 Medium2025-04-29
CVE-2025-4066 ScriptAndTools Online-Travling-System addpackage.php access control — Online-Travling-System 7.3 High2025-04-29

Vulnerabilities classified as CWE-284 (访问控制不恰当) represent 2041 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.