Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-863 (授权机制不正确) — Vulnerability Class 1255

1255 vulnerabilities classified as CWE-863 (授权机制不正确). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-24479 FactoryTalk® View Machine Edition - Local Code Injection — FactoryTalk View Machine Edition 7.8 -2025-01-28
CVE-2025-0781 Incorrect Authorization in SimGear — SimGear 8.6 High2025-01-28
CVE-2024-22316 IBM Sterling File Gateway improper access control — Sterling File Gateway 4.3 Medium2025-01-27
CVE-2023-50946 IBM Common Licensing information disclosure — Common Licensing 6.5 Medium2025-01-26
CVE-2025-24460 JetBrains TeamCity 安全漏洞 — TeamCity 4.3 Medium2025-01-21
CVE-2025-0580 Shiprocket Module REST API Module rest_api authorization — Shiprocket Module 5.6 Medium2025-01-20
CVE-2025-21403 On-Premises Data Gateway Information Disclosure Vulnerability — On-Premises Data Gateway 6.4 Medium2025-01-14
CVE-2024-13302 Pages Restriction Access - Critical - Access bypass - SA-CONTRIB-2024-068 — Pages Restriction Access 7.5 -2025-01-09
CVE-2024-13291 Basic HTTP Authentication - Critical - Access bypass - SA-CONTRIB-2024-057 — Basic HTTP Authentication--2025-01-09
CVE-2024-13290 OhDear Integration - Moderately critical - Access bypass - SA-CONTRIB-2024-056 — OhDear Integration 7.5 -2025-01-09
CVE-2024-13282 Block permissions - Moderately critical - Access bypass - SA-CONTRIB-2024-046 — Block permissions 5.3 -2025-01-09
CVE-2024-13281 Monster Menus - Moderately critical - Access bypass, Information Disclosure - SA-CONTRIB-2024-045 — Monster Menus 7.5 -2025-01-09
CVE-2024-13278 Diff - Moderately critical - Access bypass, Information Disclosure - SA-CONTRIB-2024-042 — Diff 8.8 -2025-01-09
CVE-2024-13277 Smart IP Ban - Critical - Access bypass - SA-CONTRIB-2024-041 — Smart IP Ban 9.1 -2025-01-09
CVE-2024-13271 Content Entity Clone - Moderately critical - Information Disclosure - SA-CONTRIB-2024-035 — Content Entity Clone 9.1 -2025-01-09
CVE-2024-13270 Freelinking - Moderately critical - Information Disclosure - SA-CONTRIB-2024-034 — Freelinking 7.5 -2025-01-09
CVE-2024-13266 Responsive and off-canvas menu - Moderately critical - Access bypass - SA-CONTRIB-2024-030 — Responsive and off-canvas menu 7.5 -2025-01-09
CVE-2024-13258 Drupal REST & JSON API Authentication - Moderately critical - Access bypass - SA-CONTRIB-2024-022 — Drupal REST & JSON API Authentication 8.2 -2025-01-09
CVE-2024-13257 Commerce View Receipt - Moderately critical - Access bypass - SA-CONTRIB-2024-021 — Commerce View Receipt 7.5 -2025-01-09
CVE-2024-13253 Advanced PWA - Critical - Access bypass - SA-CONTRIB-2024-017 — Advanced PWA inc Push Notifications 8.2 -2025-01-09
CVE-2025-22449 Access control flaw for team admins allows unauthorized team additions — Mattermost 3.8 Low2025-01-09
CVE-2024-47102 IBM AIX denial of service — AIX 5.5 Medium2024-12-25
CVE-2024-56350 JetBrains TeamCity 安全漏洞 — TeamCity 4.3 Medium2024-12-20
CVE-2024-56348 JetBrains TeamCity 安全漏洞 — TeamCity 4.3 Medium2024-12-20
CVE-2024-12831 Arista NG Firewall uvm_login Incorrect Authorization Privilege Escalation Vulnerability — NG Firewall 7.8 -2024-12-20
CVE-2023-4617 Gaining remote control over Govee devices — Govee Home 10.0 Critical2024-12-19
CVE-2024-12539 Elasticsearch Incorrect Authorization — Elasticsearch 7.5 -2024-12-17
CVE-2024-9654 Easy Digital Downloads 3.1 - 3.3.4 - Improper Authorization to Paywall Bypass — Easy Digital Downloads – eCommerce Payments and Subscriptions made easy 3.7 Low2024-12-17
CVE-2024-8116 Incorrect Authorization in GitLab — GitLab 5.3 Medium2024-12-16
CVE-2024-8650 Incorrect Authorization in GitLab — GitLab 5.3 Medium2024-12-16

Vulnerabilities classified as CWE-863 (授权机制不正确) represent 1255 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.