Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-863 (授权机制不正确) — Vulnerability Class 1255

1255 vulnerabilities classified as CWE-863 (授权机制不正确). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-4128 Mattermost Guest User Information Disclosure Vulnerability — Mattermost 3.1 Low2025-06-11
CVE-2024-8270 macOS Rocket.Chat: TCC Policy Bypass via Dylib Injection Due to Missing Code Signing Flags and Dangerous Entitlements — Rocket.Chat Desktop 5.5 Medium2025-06-10
CVE-2024-7457 macOS Stash network-management utility: Unauthorized Manipulation of System Network Preferences — Stash 7.8 High2025-06-10
CVE-2025-36578 Dell Wyse Management Suite WMS 安全漏洞 — Wyse Management Suite 6.8 Medium2025-06-10
CVE-2025-40568 Siemens多款产品 安全漏洞 — RUGGEDCOM RST2428P 4.3 Medium2025-06-10
CVE-2025-40567 Siemens多款产品 安全漏洞 — RUGGEDCOM RST2428P 6.5 Medium2025-06-10
CVE-2025-40670 Incorrect Authorization vulnerability in TCMAN GIM — GIM 9.8AICriticalAI2025-06-09
CVE-2025-40669 Incorrect Authorization vulnerability in TCMAN GIM — GIM 8.1AIHighAI2025-06-09
CVE-2025-40668 Incorrect Authorization vulnerability in TCMAN GIM — GIM 8.1AIHighAI2025-06-09
CVE-2025-49599 Huawei多款产品 安全漏洞 — EG8141A5 4.1 Medium2025-06-06
CVE-2025-48935 Deno has --allow-read / --allow-write permission bypass in `node:sqlite` — deno 8.1AIHighAI2025-06-04
CVE-2025-48888 Deno run with --allow-read and --deny-read flags results in allowed — deno 7.1AIHighAI2025-06-04
CVE-2025-21479 Incorrect Authorization in Graphics — Snapdragon 8.6 High2025-06-03
CVE-2025-21480 Incorrect Authorization in Graphics Windows — Snapdragon 8.6 High2025-06-03
CVE-2025-3260 Grafana 安全漏洞 — Grafana 8.3 High2025-06-02
CVE-2025-20674 MediaTek Chipsets 安全漏洞 — MT6890, MT6990, MT7915, MT7916, MT7981, MT7986, MT7990, MT7992, MT7993 9.8AICriticalAI2025-06-02
CVE-2025-48948 Navidrome Transcoding Permission Bypass Vulnerability Report — navidrome 4.3AIMediumAI2025-05-30
CVE-2024-7096 Privilege Escalation in Multiple WSO2 Products via SOAP Admin Service Due to Business Logic Flaw — WSO2 Open Banking IAM 4.2 Medium2025-05-30
CVE-2025-3611 Improper Access Control in Mattermost allows System Managers to view team details despite role restrictions — Mattermost 3.1 Low2025-05-30
CVE-2025-1792 Improper Access Control in Mattermost Channel Member API — Mattermost 3.1 Low2025-05-30
CVE-2025-48881 Valtimo backend libraries allows objects in the object-api to be accessed and modified by unauthorized users — valtimo-backend-libraries 8.3 High2025-05-30
CVE-2025-48757 Lovable 安全漏洞 — Lovable 9.3 Critical2025-05-30
CVE-2025-48475 FreeScout Vulnerable to Insufficient Authorization — freescout 5.4AIMediumAI2025-05-29
CVE-2025-48474 FreeScout Vulnerable to Insufficient Authorization — freescout 4.3AIMediumAI2025-05-29
CVE-2025-48473 FreeScout Vulnerable to Insufficient Authorization — freescout 3.5AILowAI2025-05-29
CVE-2025-48472 FreeScout Vulnerable to Insufficient Authorization — freescout 7.1AIHighAI2025-05-29
CVE-2025-3913 Team Privacy Settings Authorization Bypass in Mattermost Server — Mattermost 5.3 Medium2025-05-29
CVE-2025-25251 Fortinet FortiClientMAC 安全漏洞 — FortiClientMac 7.4 High2025-05-28
CVE-2025-25026 IBM Security Guardium information disclosure — Security Guardium 4.3 Medium2025-05-28
CVE-2025-4975 Tapo privilege escalation on shared devices using notifications — TP-Link Tapo app 8.8AIHighAI2025-05-22

Vulnerabilities classified as CWE-863 (授权机制不正确) represent 1255 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.