Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-285 (授权机制不恰当) — Vulnerability Class 972

972 vulnerabilities classified as CWE-285 (授权机制不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2020-25716 Red Hat CloudForms 安全漏洞 — Cloudforms 8.1 -2021-06-07
CVE-2020-1690 OpenStack 安全漏洞 — openstack-selinux 6.5 -2021-06-07
CVE-2021-32620 Users registered with email verification can self re-activate their disabled accounts — xwiki-platform 8.8 High2021-05-28
CVE-2021-32619 Static imports inside dynamically imported modules do not adhere to permission checks — deno 9.8 Critical2021-05-28
CVE-2020-10716 Red Hat Satellite 安全漏洞 — rubygem-foreman_ansible 6.5 -2021-05-27
CVE-2021-24189 Captchinoo, Google recaptcha for admin login page < 2.4 - Arbitrary Plugin Installation/Activation via Low Privilege User — Captchinoo, Google recaptcha for admin login page 8.8 -2021-05-14
CVE-2021-24190 WooCommerce Conditional Marketing Mailer < 1.5.2 - Arbitrary Plugin Installation/Activation via Low Privilege User — WooCommerce Conditional Marketing Mailer 8.8 -2021-05-14
CVE-2021-24191 WP Maintenance Mode & Site Under Construction < 1.8.2 - Arbitrary Plugin Installation/Activation via Low Privilege User — WP Maintenance Mode & Site Under Construction 8.8 -2021-05-14
CVE-2021-24192 Tree Sitemap < 2.9 - Arbitrary Plugin Installation/Activation via Low Privilege User — Tree Sitemap (Pages, Posts & Categories list) 8.8 -2021-05-14
CVE-2021-24193 Visitor Traffic Real Time Statistics < 2.12 - Arbitrary Plugin Installation/Activation via Low Privilege User — Visitor Traffic Real Time Statistics 8.8 -2021-05-14
CVE-2021-24194 Login Protection - Limit Failed Login Attempts < 2.9 - Arbitrary Plugin Installation/Activation via Low Privilege User — Login Protection – Limit Failed Login Attempts 8.8 -2021-05-14
CVE-2021-24195 Login as User or Customer (User Switching) < 1.9 - Arbitrary Plugin Installation/Activation via Low Privilege User — Login as User or Customer (User Switching) 8.8 -2021-05-14
CVE-2021-24188 WP Content Copy Protection & No Right Click < 3.1.5 - Arbitrary Plugin Installation/Activation via Low Privilege User — WP Content Copy Protection & No Right Click 8.8 -2021-05-14
CVE-2021-28799 Improper Authorization Vulnerability in HBS 3 (Hybrid Backup Sync) — HBS 3 10.0 Critical2021-05-13
CVE-2020-17517 Ozone S3 Gateway allows bucket and key access to non authenticated users — Apache Ozone 7.5 -2021-04-27
CVE-2021-25382 SAMSUNG Mobile devices 安全漏洞 — Samsung Mobile Devices 6.1 Medium2021-04-23
CVE-2021-0260 Junos OS: SNMP fails to properly perform authorization checks on incoming received SNMP requests. — Junos OS 7.3 High2021-04-22
CVE-2021-21096 Adobe Bridge Genuine Software Service Incorrect Permission Assignment could lead to Denial-of-Service — Bridge 5.5 -2021-04-15
CVE-2021-21432 Reject unauthorized access with GitHub PATs — server 7.5 High2021-04-09
CVE-2021-25381 Samsung Account 授权问题漏洞 — Samsung Account 5.5 Medium2021-04-09
CVE-2021-25374 SAMSUNG Mobile devices 安全漏洞 — Samsung Members 8.6 High2021-04-09
CVE-2021-25373 Samsung 多款产品授权问题漏洞 — Customization Service 5.5 Medium2021-04-09
CVE-2021-22865 Improper access control in GitHub Enterprise Server leading to unauthorized read access to private repository metadata — GitHub Enterprise Server 4.3 -2021-04-02
CVE-2021-25355 Samsung Notes 安全漏洞 — Samsung Notes 5.5 Medium2021-03-25
CVE-2021-25354 Samsung Internet 安全漏洞 — Samsung Internet 3.3 Low2021-03-25
CVE-2021-25353 Samsung Galaxy Themes 安全漏洞 — Galaxy Themes 5.5 Medium2021-03-25
CVE-2021-25352 Samsung Bixby Voice 安全漏洞 — Bixby Voice 5.5 Medium2021-03-25
CVE-2021-25351 Samsung EmailValidationView 安全漏洞 — Samsung Account 3.2 Low2021-03-25
CVE-2019-14828 Moodle 授权问题漏洞 — Moodle 4.3 -2021-03-19
CVE-2021-21362 Bypassing readOnly policy by creating a temporary 'mc share upload' URL — minio 7.7 High2021-03-08

Vulnerabilities classified as CWE-285 (授权机制不恰当) represent 972 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.