Vulnerabilities > Incorrect Authorization

DATE CVE VULNERABILITY TITLE RISK
2021-02-23 CVE-2021-20229 A flaw was found in PostgreSQL in versions before 13.2, before 12.6, before 11.11, before 10.16, before 9.6.21 and before 9.5.25. 0.0
2021-02-22 CVE-2020-11282 Incorrect Authorization vulnerability in Qualcomm products
Improper access control when using mmap with the kgsl driver with a special offset value that can be provided to map the memstore of the GPU to user space in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
local
low complexity
qualcomm CWE-863
4.6
2021-02-18 CVE-2021-21318 Incorrect Authorization vulnerability in Apereo Opencast
Opencast is a free, open-source platform to support the management of educational audio and video content.
network
low complexity
apereo CWE-863
5.5
2021-02-17 CVE-2021-3396 Incorrect Authorization vulnerability in Opennms Horizon and Meridian
OpenNMS Meridian 2016, 2017, 2018 before 2018.1.25, 2019 before 2019.1.16, and 2020 before 2020.1.5, Horizon 1.2 through 27.0.4, and Newts <1.5.3 has Incorrect Access Control, which allows local and remote code execution using JEXL expressions.
network
low complexity
opennms CWE-863
6.5
2021-02-17 CVE-2020-24503 Incorrect Authorization vulnerability in Intel Ethernet Network Adapter E810 Firmware
Insufficient access control in some Intel(R) Ethernet E810 Adapter drivers for Linux before version 1.0.4 may allow an authenticated user to potentially enable information disclosure via local access.
local
low complexity
intel CWE-863
2.1
2021-02-17 CVE-2020-24497 Incorrect Authorization vulnerability in Intel Ethernet Network Adapter E810 Firmware
Insufficient Access Control in the firmware for Intel(R) E810 Ethernet Controllers before version 1.4.1.13 may allow a privileged user to potentially enable denial of service via local access.
local
low complexity
intel CWE-863
2.1
2021-02-17 CVE-2020-24495 Incorrect Authorization vulnerability in Intel Ethernet Network Adapter 700 Firmware
Insufficient access control in the firmware for the Intel(R) 700-series of Ethernet Controllers before version 7.3 may allow a privileged user to potentially enable denial of service via local access.
local
low complexity
intel CWE-863
2.1
2021-02-17 CVE-2020-24494 Incorrect Authorization vulnerability in Intel products
Insufficient access control in the firmware for the Intel(R) 722 Ethernet Controllers before version 1.4.3 may allow a privileged user to potentially enable denial of service via local access.
local
low complexity
intel CWE-863
2.1
2021-02-17 CVE-2020-24493 Incorrect Authorization vulnerability in Intel Ethernet Network Adapter 700 Firmware
Insufficient access control in the firmware for the Intel(R) 700-series of Ethernet Controllers before version 8.0 may allow a privileged user to potentially enable denial of service via local access.
local
low complexity
intel CWE-863
2.1
2021-02-17 CVE-2020-24492 Incorrect Authorization vulnerability in Intel products
Insufficient access control in the firmware for the Intel(R) 722 Ethernet Controllers before version 1.5 may allow a privileged user to potentially enable a denial of service via local access.
local
low complexity
intel CWE-863
2.1