Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-285 (授权机制不恰当) — Vulnerability Class 972

972 vulnerabilities classified as CWE-285 (授权机制不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-38508 Tuleap allows preview of a linked artifact with a type does not respect permissions — tuleap 6.5 Medium2023-08-24
CVE-2023-3899 Subscription-manager: inadequate authorization of com.redhat.rhsm1 d-bus interface allows local users to modify configuration — Red Hat Enterprise Linux 7 7.8 High2023-08-23
CVE-2023-4243 FULL - Customer <= 2.2.3 - Authenticated(Subscriber+) Improper Authorization to Arbitrary Plugin Installation — FULL – Cliente 8.8 High2023-08-09
CVE-2023-3957 ACF Photo Gallery Field <= 1.9 - Authenticated (Subscriber+) Arbitrary Usermeta Update — ACF Photo Gallery Field 4.3 Medium2023-07-27
CVE-2023-36826 Sentry vulnerable to improper authorization on debug and artifact file downloads — sentry 7.7 High2023-07-25
CVE-2023-23568 Gallagher Command Centre Server 安全漏洞 — Command Centre 4.3 Medium2023-07-25
CVE-2023-25074 Competency access levels not enforced in the server — Command Centre 7.1 High2023-07-24
CVE-2023-22428 Gallagher Command Centre Server 安全漏洞 — Command Centre 7.6 High2023-07-24
CVE-2023-3805 Xiamen Four Letter Video Surveillance Management System Login UserInfoAction.class improper authorization — Video Surveillance Management System 7.3 High2023-07-21
CVE-2023-32482 Dell Wyse Management Suite 授权问题漏洞 — Wyse Management Suite 4.9 Medium2023-07-20
CVE-2023-3574 Improper Authorization in pimcore/customer-data-framework — pimcore/customer-data-framework 7.1 -2023-07-10
CVE-2023-25517 NVIDIA vGPU Software 安全漏洞 — vGPU software 7.1 High2023-07-03
CVE-2023-36611 Ovarro TBox RTUs 授权问题漏洞 — TBox MS-CPU32 6.5 Medium2023-07-03
CVE-2023-34460 Tauri vulnerable to Regression on Filesystem Scope Checks for Dotfiles — tauri 4.8 Medium2023-06-23
CVE-2023-0837 Teamviewer 安全漏洞 — Remote 6.6 Medium2023-06-14
CVE-2023-33142 Microsoft SharePoint Server Elevation of Privilege Vulnerability — Microsoft SharePoint Server 2019 6.5 Medium2023-06-13
CVE-2023-32022 Windows Server Service Security Feature Bypass Vulnerability — Windows Server 2019 7.6 High2023-06-13
CVE-2023-1910 Getwid – Gutenberg Blocks <= 1.8.3 - Improper Authorization via get_remote_templates REST endpoint — Getwid – Gutenberg Blocks 4.3 Medium2023-06-09
CVE-2023-29152 PTC Vuforia Studio Improper Authorization — Vuforia Studio 6.2 Medium2023-06-07
CVE-2023-24476 PTC Vuforia Studio Improper Authorization — Vuforia Studio 1.8 Low2023-06-07
CVE-2020-36729 Slideshow, Image Slider by 2J <= 1.3.31 - Authorization Bypass — Slideshow, Image Slider by 2J 5.4 Medium2023-06-07
CVE-2019-25149 Gallery Images Ape <= 2.0.6 - Authenticated Plugin Deactivation — Gallery Images Ape 7.6 High2023-06-07
CVE-2021-4344 Frontend File Manager <= 18.2 - Privilege Escalation — Frontend File Manager Plugin 6.4 Medium2023-06-07
CVE-2020-36696 Product Input Fields for WooCommerce <= 1.2.6 - Missing Authorization — Product Input Fields for WooCommerce 7.5 High2023-06-07
CVE-2023-30948 Retrieval of Attachments to Comments lacks Authorization — com.palantir.comments:comments 6.5 Medium2023-06-06
CVE-2022-40536 Improper authentication in Modem — Snapdragon 7.5 High2023-06-06
CVE-2022-40521 Improper authorization in Modem — Snapdragon 7.5 High2023-06-06
CVE-2023-0584 VK Blocks <= 1.57.0.5 - Authenticated(Contributor+) Settings Update — VK Blocks 4.3 Medium2023-06-03
CVE-2023-0583 VK Blocks <= 1.57.0.5 - Authenticated(Contributor+) Settings Update — VK Blocks 4.3 Medium2023-06-03
CVE-2023-32709 Low-privileged User can View Hashed Default Splunk Password — Splunk Enterprise 4.3 Medium2023-06-01

Vulnerabilities classified as CWE-285 (授权机制不恰当) represent 972 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.