Vulnerabilities > Improper Access Control

DATE	CVE	VULNERABILITY TITLE	RISK
2023-08-25	CVE-2023-40579	Improper Access Control vulnerability in Openfga OpenFGA is an authorization/permission engine built for developers and inspired by Google Zanzibar. network low complexity openfga CWE-284	6.5
2023-08-23	CVE-2022-3746	Improper Access Control vulnerability in Lenovo products A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to cause some peripherals to work abnormally due to an exposed Embedded Controller (EC) interface. local low complexity lenovo CWE-284	6.7
2023-08-11	CVE-2023-35179	Improper Access Control vulnerability in Solarwinds Serv-U 15.4.0 A vulnerability has been identified within Serv-U 15.4 that, if exploited, allows an actor to bypass multi-factor/two-factor authentication. network low complexity solarwinds CWE-284	7.2
2023-08-10	CVE-2023-39959	Improper Access Control vulnerability in Nextcloud Server Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. network low complexity nextcloud CWE-284	5.3
2023-08-10	CVE-2023-39961	Improper Access Control vulnerability in Nextcloud Server Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. network low complexity nextcloud CWE-284	4.3
2023-08-10	CVE-2023-39962	Improper Access Control vulnerability in Nextcloud Server Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. network low complexity nextcloud CWE-284	7.7
2023-08-10	CVE-2023-39952	Improper Access Control vulnerability in Nextcloud Server Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. network low complexity nextcloud CWE-284	6.5
2023-08-07	CVE-2023-39349	Improper Access Control vulnerability in Sentry Sentry is an error tracking and performance monitoring platform. network low complexity sentry CWE-284	8.1
2023-08-06	CVE-2023-4183	Improper Access Control vulnerability in Inventory Management System Project Inventory Management System 1.0 A vulnerability has been found in SourceCodester Inventory Management System 1.0 and classified as problematic. network low complexity inventory-management-system-project CWE-284 critical	9.8
2023-07-10	CVE-2023-30765	Improper Access Control vulnerability in Deltaww Infrasuite Device Master 00.00.01A/00.00.02A/1.0.5 ?Delta Electronics InfraSuite Device Master versions prior to 1.0.7 contain improper access controls that could allow an attacker to alter privilege management configurations, resulting in privilege escalation. network low complexity deltaww CWE-284 critical	9.8

Vulnerabilities > Improper Access Control {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Improper Access Control"}]}

Vulnerabilities > Improper Access Control