CWE-284 (访问控制不恰当) — Vulnerability Class 2041

2041 vulnerabilities classified as CWE-284 (访问控制不恰当). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2017-18101	Atlassian JIRA Server 安全漏洞 — Jira	6.5	-	2018-04-10
CVE-2018-7520	Geutebrück G-Cam/EFD-2250和Topline TopFD-2125 访问控制错误漏洞 — GeutebrÃ¼ck G-Cam/EFD-2250 (part nÂ° 5.02024) firmware and Topline TopFD-2125 (part nÂ° 5.02820) firmware	9.1	-	2018-03-22
CVE-2018-4844	Siemens SIMATIC WinCC OA UI for Android和iOS 安全漏洞 — SIMATIC WinCC OA UI for Android, SIMATIC WinCC OA UI for iOS	7.3	-	2018-03-20
CVE-2016-8629	Red Hat Keycloak 权限许可和访问控制漏洞 — Keycloak	7.1	-	2018-03-12
CVE-2018-1069	Red Hat OpenShift Enterprise 安全漏洞 — OpenShift Enterprise	7.5	-	2018-03-09
CVE-2017-12191	Red Hat CloudForms Management Engine 安全漏洞 — CloudForms	7.4	-	2018-02-28
CVE-2018-1168	ABB MicroSCADA 安全漏洞 — ABB MicroSCADA	7.0	-	2018-02-21
CVE-2018-0119	Cisco Spark 信息泄露漏洞 — Cisco Spark	6.3	-	2018-02-08
CVE-2017-18035	Atlassian Fisheye和Crucible 安全漏洞 — Fisheye and Crucible	4.3	-	2018-02-02
CVE-2017-9513	Atlassian Activity Streams 访问控制错误漏洞 — Activity Streams	5.4	-	2018-01-29
CVE-2017-15131	xdg-user-dirs 访问控制错误漏洞 — RHEL shipped xdg-user-dirs and gnome-session	7.8	-	2018-01-09
CVE-2017-16766	Synology DiskStation Manager 访问控制错误漏洞 — DiskStation Manager (DSM)	6.4	-	2017-12-22
CVE-2017-5254	Cambium Networks ePMP 安全漏洞 — ePMP	8.8	-	2017-12-20
CVE-2017-15891	Synology Calendar 访问控制错误漏洞 — Synology Calendar	6.5	-	2017-12-08
CVE-2017-12340	多款Cisco产品Cisco NX-OS System Software 安全漏洞 — Cisco Multilayer Director, Nexus 7000 Series, and Nexus 7700 Series Switches	3.4	-	2017-11-30
CVE-2017-14031	Trihedral VTScada 访问控制错误漏洞 — Trihedral Engineering Limited VTScada	7.1	-	2017-11-06
CVE-2017-12262	Cisco Application Policy Infrastructure Controller Enterprise Module 安全漏洞 — Cisco Application Policy Infrastructure Controller Enterprise Module	8.8	-	2017-11-02
CVE-2017-8447	Elasticsearch X-Pack Security 安全漏洞 — Elastic X-Pack Security	6.5	-	2017-09-28
CVE-2017-8448	Elastic X-Pack Alerting 安全漏洞 — Elastic X-Pack Alerting	8.8	-	2017-09-28
CVE-2017-6866	Siemens XHQ 4和5 安全漏洞 — XHQ 4 (All versions before V4.7.1.3), XHQ 5 (All versions before V5.0.0.2)	6.5	-	2017-08-07
CVE-2017-7928	Schweitzer Engineering Laboratories SEL-3620和SEL-3622 Security Gateway 安全漏洞 — Schweitzer Engineering Laboratories, Inc. SEL-3620 and SEL-3622	9.6	-	2017-08-07
CVE-2017-7918	Cambium Networks ePMP 访问控制错误漏洞 — Cambium Networks ePMP	6.8	-	2017-06-21
CVE-2017-8438	Elastic X-Pack Security 权限许可和访问控制漏洞 — X-Pack Security	8.8	-	2017-06-05
CVE-2017-6016	LCDS - Leao Consultoria e Desenvolvimento de Sistemas LTDA ME LAquis SCADA 访问控制错误漏洞 — LCDS Leao Consultoria e Desenvolvimento de Sistemas LTDA ME LAquis SCADA	7.8	-	2017-05-19
CVE-2016-9368	Eaton xComfort Ethernet Communication Interface 访问控制错误漏洞 — Eaton xComfort Ethernet Communication Interface	7.5	-	2017-03-14
CVE-2014-2365	Advantech WebAccess Improper Access Control — WebAccess	8.1	-	2014-07-19
CVE-2012-6435	Rockwell Automation ControlLogix PLC Improper Access Control — 1756-ENBT, 1756-EWEB, 1768-ENBT, 1768-EWEB communication modules	9.8	-	2013-01-24
CVE-2012-6439	Rockwell Automation ControlLogix PLC Improper Access Control — 1756-ENBT, 1756-EWEB, 1768-ENBT, 1768-EWEB communication modules	9.8	-	2013-01-24
CVE-2012-6442	Rockwell Automation ControlLogix PLC Improper Access Control — 1756-ENBT, 1756-EWEB, 1768-ENBT, 1768-EWEB communication modules	9.8	-	2013-01-24
CVE-2012-6068	3S CoDeSys Improper Access Control — CODESYS Control Runtime embedded	9.8	Critical	2013-01-21

Vulnerabilities classified as CWE-284 (访问控制不恰当) represent 2041 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-284 (访问控制不恰当) — Vulnerability Class 2041