Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-863 (授权机制不正确) — Vulnerability Class 1241

1241 vulnerabilities classified as CWE-863 (授权机制不正确). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-20282 Moodle 安全漏洞 — moodle 7.5 -2021-03-15
CVE-2020-25239 Siemens SINEMA Remote Connect Server 安全漏洞 — SINEMA Remote Connect Server 8.8 -2021-03-15
CVE-2020-25240 Siemens SINEMA Remote Connect Server 安全漏洞 — SINEMA Remote Connect Server 8.3 -2021-03-15
CVE-2021-20179 pki-core 安全漏洞 — pki-core 7.4 -2021-03-15
CVE-2021-21367 Incorrect Authorization in switchboard-plug-bluetooth — switchboard-plug-bluetooth 6.1 Medium2021-03-12
CVE-2021-26563 Synology DiskStation Manager 访问控制错误漏洞 — DiskStation Manager (DSM) 8.2 High2021-02-26
CVE-2021-20229 PostgreSQL 安全漏洞 — PostgreSQL 4.3 -2021-02-23
CVE-2021-21318 Removing access may not effect published series — opencast 5.4 Medium2021-02-18
CVE-2021-20188 Podman 访问控制错误漏洞 — podman 7.0 -2021-02-11
CVE-2021-21286 Authorization Bypass in AVideo Platform — AVideo 7.7 High2021-02-01
CVE-2021-21276 Privilege escalation in Polr — polr 9.3 Critical2021-02-01
CVE-2020-1725 Red Hat Keycloak 访问控制错误漏洞 — keycloak 5.4 -2021-01-28
CVE-2021-21013 Magento Commerce Insecure Direct Object Reference Could Lead To Information Disclosure — Magento Commerce 8.1 High2021-01-13
CVE-2021-1144 Cisco Connected Mobile Experiences Privilege Escalation Vulnerability — Cisco Connected Mobile Experiences 8.8 High2021-01-13
CVE-2021-1143 Cisco Connected Mobile Experiences User Enumeration Vulnerability — Cisco Connected Mobile Experiences 4.3 Medium2021-01-13
CVE-2020-26250 Base class whitelist configuration ignored in OAuthenticator — oauthenticator 6.3 Medium2020-12-01
CVE-2020-15248 Privilege escalation by backend users assigned to the default "Publisher" system role — october 4.0 Medium2020-11-23
CVE-2020-15246 Local File Inclusion by unauthenticated users — october 7.5 High2020-11-23
CVE-2020-28211 Schneider Electric EcoStruxure Control Expert 权限许可和访问控制问题漏洞 — PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) 7.8 -2020-11-19
CVE-2020-25699 Moodle 访问控制错误漏洞 — moodle 7.5 -2020-11-19
CVE-2020-26223 Authorization bypass in Spree — spree 7.7 High2020-11-13
CVE-2020-25655 Red Hat Advanced Cluster Management 安全漏洞 — open-cluster-management 5.7 Medium2020-11-09
CVE-2020-24401 Incorrect permissions following the deletion of a user role or deactivation of a user — Magento Commerce 6.5 Medium2020-11-09
CVE-2020-15278 Unauthorized privilege escalation in Mod module — Red-DiscordBot 7.7 High2020-10-28
CVE-2020-3578 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software WebVPN Portal Access Rule Bypass Vulnerability — Cisco Adaptive Security Appliance (ASA) Software 5.3 Medium2020-10-21
CVE-2020-12503 Pepperl+Fuchs improper authorization affects multiple Comtrol RocketLinx products — P+F Comtrol RocketLinx 7.2 High2020-10-15
CVE-2020-15251 Privilege Escalation in Channelmgnt plug-in for Sopel — sopel-channelmgnt 7.7 High2020-10-13
CVE-2020-3467 Cisco Identity Services Engine Authorization Bypass Vulnerability — Cisco Identity Services Engine Software 8.5 -2020-10-08
CVE-2020-3404 Cisco IOS XE Software Consent Token Bypass Vulnerability — Cisco IOS XE Software 7.8 -2020-09-24
CVE-2020-15163 Invalid root may become trusted root in The Update Framework (TUF) — tuf 8.7 High2020-09-09

Vulnerabilities classified as CWE-863 (授权机制不正确) represent 1241 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.