Vulnerabilities > Improper Access Control
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-25 | CVE-2022-27805 | Improper Access Control vulnerability in Goabode Iota All-In-One Security KIT Firmware 6.9X/6.9Z An authentication bypass vulnerability exists in the GHOME control functionality of Abode Systems, Inc. | 9.8 |
| 2022-09-07 | CVE-2022-21950 | Improper Access Control vulnerability in Opensuse Canna 3.7P3/3.7P3Bp153.2.3.1 A Improper Access Control vulnerability in the systemd service of cana in openSUSE Backports SLE-15-SP3, openSUSE Backports SLE-15-SP4 allows local users to hijack the UNIX domain socket This issue affects: openSUSE Backports SLE-15-SP3 canna versions prior to canna-3.7p3-bp153.2.3.1. | 5.3 |
| 2022-08-26 | CVE-2021-3864 | Improper Access Control vulnerability in multiple products A flaw was found in the way the dumpable flag setting was handled when certain SUID binaries executed its descendants. | 7.0 |
| 2022-08-24 | CVE-2021-4037 | Improper Access Control vulnerability in multiple products A vulnerability was found in the fs/inode.c:inode_init_owner() function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belongs to a certain group and is writable by a user who is not a member of this group. | 7.8 |
| 2022-08-16 | CVE-2022-34255 | Improper Access Control vulnerability in multiple products Adobe Commerce versions 2.4.3-p2 (and earlier), 2.3.7-p3 (and earlier) and 2.4.4 (and earlier) are affected by an Improper Access Control vulnerability that could result in Privilege escalation. | 8.8 |
| 2022-08-08 | CVE-2022-2702 | Improper Access Control vulnerability in Company Website/Cms Project Company Website/Cms A vulnerability was found in SourceCodester Company Website CMS and classified as critical. | 6.5 |
| 2022-08-02 | CVE-2022-2631 | Improper Access Control vulnerability in Tooljet Improper Access Control in GitHub repository tooljet/tooljet prior to v1.19.0. | 8.8 |
| 2022-07-29 | CVE-2022-2578 | Improper Access Control vulnerability in Garage Management System Project Garage Management System 1.0 A vulnerability, which was classified as critical, has been found in SourceCodester Garage Management System 1.0. | 9.8 |
| 2022-06-15 | CVE-2022-1958 | Improper Access Control vulnerability in Filecloud A vulnerability classified as critical has been found in FileCloud. | 6.5 |
| 2022-05-09 | CVE-2019-25060 | Improper Access Control vulnerability in Wpgraphql 0.2.3 The WPGraphQL WordPress plugin before 0.3.5 doesn't properly restrict access to information about other users' roles on the affected site. | 5.3 |