Vulnerabilities > Improper Authorization

DATE CVE VULNERABILITY TITLE RISK
2023-02-01 CVE-2023-0609 Improper Authorization vulnerability in Wallabag
Improper Authorization in GitHub repository wallabag/wallabag prior to 2.5.3.
network
low complexity
wallabag CWE-285
4.3
2023-02-01 CVE-2023-0610 Improper Authorization vulnerability in Wallabag
Improper Authorization in GitHub repository wallabag/wallabag prior to 2.5.3.
network
low complexity
wallabag CWE-285
4.3
2023-02-01 CVE-2022-4062 Improper Authorization vulnerability in Schneider-Electric Ecostruxure Power Commission
A CWE-285: Improper Authorization vulnerability exists that could cause unauthorized access to certain software functions when an attacker gets access to localhost interface of the EcoStruxure Power Commission application.
local
low complexity
schneider-electric CWE-285
3.3
2022-12-31 CVE-2022-4868 Improper Authorization vulnerability in Froxlor
Improper Authorization in GitHub repository froxlor/froxlor prior to 2.0.0-beta1.
network
low complexity
froxlor CWE-285
4.3
2022-12-28 CVE-2022-4804 Improper Authorization in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
CWE-285
5.3
2022-12-23 CVE-2022-4688 Improper Authorization in GitHub repository usememos/memos prior to 0.9.0.
network
low complexity
CWE-285
8.8
2022-12-21 CVE-2022-3187 Improper Authorization vulnerability in Dataprobe products
Dataprobe iBoot-PDU FW versions prior to 1.42.06162022 contain a vulnerability where certain PHP pages only validate when a valid connection is established with the database.
network
low complexity
dataprobe CWE-285
5.3
2022-12-20 CVE-2022-23542 Improper Authorization vulnerability in Openfga
OpenFGA is an authorization/permission engine built for developers and inspired by Google Zanzibar.
network
low complexity
openfga CWE-285
critical
9.8
2022-06-02 CVE-2022-29233 Improper Authorization vulnerability in Bigbluebutton
BigBlueButton is an open source web conferencing system.
network
low complexity
bigbluebutton CWE-285
5.0
2022-06-02 CVE-2022-29234 Improper Authorization vulnerability in Bigbluebutton
BigBlueButton is an open source web conferencing system.
network
low complexity
bigbluebutton CWE-285
4.3