Vulnerabilities > Improper Authorization

DATE	CVE	VULNERABILITY TITLE	RISK
2016-07-28	CVE-2016-4531	Improper Authorization vulnerability in Rockwellautomation Factorytalk Energrymetrix 2.10.00 Rockwell Automation FactoryTalk EnergyMetrix before 2.20.00 does not invalidate credentials upon a logout action, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation. network low complexity rockwellautomation CWE-285	7.3
2016-07-23	CVE-2016-1711	Improper Authorization vulnerability in Google Chrome WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 52.0.2743.82, does not disable frame navigation during a detach operation on a DocumentLoader object, which allows remote attackers to bypass the Same Origin Policy via a crafted web site. network low complexity google CWE-285	8.8
2016-07-23	CVE-2016-1710	Improper Authorization vulnerability in Google Chrome The ChromeClientImpl::createWindow method in WebKit/Source/web/ChromeClientImpl.cpp in Blink, as used in Google Chrome before 52.0.2743.82, does not prevent window creation by a deferred frame, which allows remote attackers to bypass the Same Origin Policy via a crafted web site. network low complexity google CWE-285	8.8

Vulnerabilities > Improper Authorization {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Improper Authorization"}]}