Vulnerabilities > Incorrect Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-20 | CVE-2020-5288 | Incorrect Authorization vulnerability in Prestashop "In PrestaShop between versions 1.7.0.0 and 1.7.6.5, there is improper access controls on product attributes page. | 6.4 |
| 2020-04-20 | CVE-2020-5287 | Incorrect Authorization vulnerability in Prestashop In PrestaShop between versions 1.5.5.0 and 1.7.6.5, there is improper access control on customers search. | 6.4 |
| 2020-04-20 | CVE-2020-5279 | Incorrect Authorization vulnerability in Prestashop In PrestaShop between versions 1.5.0.0 and 1.7.6.5, there are improper access control since the the version 1.5.0.0 for legacy controllers. | 6.4 |
| 2020-04-17 | CVE-2019-20772 | Incorrect Authorization vulnerability in Google Android An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, 8.1, and 9.0 software. | 7.5 |
| 2020-04-14 | CVE-2020-6214 | Incorrect Authorization vulnerability in SAP S/4Hana 100 SAP S/4HANA (Financial Products Subledger), version 100, uses an incorrect authorization object in some reports. | 6.5 |
| 2020-04-08 | CVE-2018-21039 | Incorrect Authorization vulnerability in Google Android 7.0 An issue was discovered on Samsung mobile devices with N(7.0) software. | 5.0 |
| 2020-04-08 | CVE-2018-21082 | Incorrect Authorization vulnerability in Google Android An issue was discovered on Samsung mobile devices with N(7.x) software. | 4.6 |
| 2020-04-08 | CVE-2020-11628 | Incorrect Authorization vulnerability in Primekey Ejbca 7.0.0 An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2. | 5.0 |
| 2020-04-07 | CVE-2020-9286 | Incorrect Authorization vulnerability in Fortinet Fortiadc Firmware An improper authorization vulnerability in FortiADC may allow a remote authenticated user with low privileges to perform certain actions such as rebooting the system. | 6.8 |
| 2020-04-07 | CVE-2019-13554 | Incorrect Authorization vulnerability in GE Mark VIE Control System GE Mark VIe Controller has an unsecured Telnet protocol that may allow a user to create an authenticated session using generic default credentials. | 6.5 |