Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-863 (授权机制不正确) — Vulnerability Class 1255

1255 vulnerabilities classified as CWE-863 (授权机制不正确). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-48911 OpenCanary Executes Commands From Potentially Writable Config File — opencanary 8.8AIHighAI2024-10-14
CVE-2024-8970 Incorrect Authorization in GitLab — GitLab 8.2 High2024-10-11
CVE-2024-45128 Adobe Commerce | Incorrect Authorization (CWE-863) — Adobe Commerce 5.4 Medium2024-10-10
CVE-2024-45132 Adobe Commerce | Incorrect Authorization (CWE-863) — Adobe Commerce 6.5 Medium2024-10-10
CVE-2024-45131 Adobe Commerce | Incorrect Authorization (CWE-863) — Adobe Commerce 5.4 Medium2024-10-10
CVE-2024-45125 Adobe Commerce | Incorrect Authorization (CWE-863) — Adobe Commerce 4.3 Medium2024-10-10
CVE-2024-9623 Incorrect Authorization in GitLab — GitLab 4.9 Medium2024-10-10
CVE-2024-7048 IDOR in open-webui/open-webui — open-webui/open-webui 8.8AIHighAI2024-10-10
CVE-2024-47780 Information Disclosure in TYPO3 Page Tree — typo3 3.1 Low2024-10-08
CVE-2024-47616 Pomerium's service account access token may grant unintended access to databroker API — pomerium 6.8 Medium2024-10-02
CVE-2024-47560 J’s Communication RevoWorks Cloud Client 安全漏洞 — RevoWorks Cloud Client 8.4 -2024-10-01
CVE-2024-47172 Computer Vision Annotation Tool (CVAT) access control is broken in several PATCH endpoints — cvat 5.4 Medium2024-09-30
CVE-2024-47077 authentik cross-provider token validation problems — authentik 6.5 Medium2024-09-27
CVE-2024-9136 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.7 Medium2024-09-27
CVE-2024-9155 Insufficient Authorization On Unlinked Channel Files — Mattermost 4.3 Medium2024-09-26
CVE-2024-7108 Incorrect Authorization in National Keep's CyberMath — CyberMath 8.1AIHighAI2024-09-26
CVE-2024-20510 Cisco IOS XE Software 安全漏洞 — Cisco IOS XE Software 4.7 Medium2024-09-25
CVE-2024-6512 Devolutions Server 安全漏洞 — Devolutions Server 6.5AIMediumAI2024-09-25
CVE-2024-6593 WatchGuard Firebox Single Sign-On Agent Management Interface Authentication Bypass — Authentication Gateway 9.1 Critical2024-09-25
CVE-2024-8606 Fix 2FA bypass via RestAPI — Checkmk 6.5AIMediumAI2024-09-23
CVE-2024-47160 JetBrains YouTrack 安全漏洞 — YouTrack 4.3 Medium2024-09-19
CVE-2024-47159 JetBrains YouTrack 安全漏洞 — YouTrack 4.3 Medium2024-09-19
CVE-2024-2743 Incorrect Authorization in GitLab — GitLab 5.3 Medium2024-09-12
CVE-2024-8691 PAN-OS: User Impersonation in GlobalProtect Portal — PAN-OS 6.5AIMediumAI2024-09-11
CVE-2024-4465 Incorrect authorization for Reports configuration in Guardian/CMC before 24.2.0 — Guardian 6.0 Medium2024-09-11
CVE-2024-42423 Dell ThinOS 安全漏洞 — Wyse Proprietary OS (Modern ThinOS) 6.1 Medium2024-09-10
CVE-2024-6979 AXIS OS 安全漏洞 — AXIS OS 6.8 Medium2024-09-10
CVE-2024-44114 Missing Authorization check in SAP NetWeaver Application Server for ABAP and ABAP Platform — SAP NetWeaver Application Server for ABAP and ABAP Platform 2.0 Low2024-09-10
CVE-2024-45588 Information Disclosure Vulnerability — XTS Web Trader 7.1 -2024-09-03
CVE-2024-45587 Unauthorized Modification Vulnerability — XTS Web Trader 8.8 -2024-09-03

Vulnerabilities classified as CWE-863 (授权机制不正确) represent 1255 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.