Vulnerabilities > Improper Access Control
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-18 | CVE-2015-9047 | Improper Access Control vulnerability in Google Android In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability exists in GNSS when performing a scan after bootup. | 9.8 |
| 2017-08-18 | CVE-2015-9040 | Improper Access Control vulnerability in Google Android In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability exists in a GERAN API. | 9.8 |
| 2017-08-09 | CVE-2015-2687 | Improper Access Control vulnerability in Openstack Compute OpenStack Compute (nova) Icehouse, Juno and Havana when live migration fails allows local users to access VM volumes that they would normally not have permissions for. | 4.7 |
| 2017-08-07 | CVE-2014-9831 | Improper Access Control vulnerability in Imagemagick coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted wpg file. | 8.8 |
| 2017-08-07 | CVE-2014-9830 | Improper Access Control vulnerability in Imagemagick coders/sun.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted sun file. | 8.8 |
| 2017-08-07 | CVE-2014-9828 | Improper Access Control vulnerability in Imagemagick coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file. | 8.8 |
| 2017-08-07 | CVE-2014-9827 | Improper Access Control vulnerability in Imagemagick coders/xpm.c in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file. | 8.8 |
| 2017-08-07 | CVE-2015-7887 | Improper Access Control vulnerability in Netapp Snapcenter Server 1.0 NetApp SnapCenter Server 1.0 allows remote authenticated users to list and delete backups. | 8.1 |
| 2017-06-29 | CVE-2016-10042 | Improper Access Control vulnerability in Arcadyan Swisscom Internet-Box Firmware Authorization Bypass in the Web interface of Arcadyan SLT-00 Star* (aka Swisscom Internet-Box) devices before R7.7 allows unauthorized reconfiguration of the static routing table via an unauthenticated HTTP request, leading to denial of service and information disclosure. | 7.5 |
| 2017-06-27 | CVE-2016-6342 | Improper Access Control vulnerability in multiple products elog 3.1.1 allows remote attackers to post data as any username in the logbook. | 7.5 |