Vulnerabilities > Incorrect Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-12 | CVE-2020-11707 | Incorrect Authorization vulnerability in Provideserver Provide FTP Server 13.1 An issue was discovered in ProVide (formerly zFTPServer) through 13.1. | 8.8 |
| 2020-04-08 | CVE-2018-21039 | Incorrect Authorization vulnerability in Google Android 7.0 An issue was discovered on Samsung mobile devices with N(7.0) software. | 7.5 |
| 2020-04-08 | CVE-2018-21082 | Incorrect Authorization vulnerability in Google Android An issue was discovered on Samsung mobile devices with N(7.x) software. | 8.4 |
| 2020-04-08 | CVE-2020-11628 | Incorrect Authorization vulnerability in Primekey Ejbca An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2. | 5.3 |
| 2020-04-03 | CVE-2020-8142 | Incorrect Authorization vulnerability in Revive-Adserver Revive Adserver A security restriction bypass vulnerability has been discovered in Revive Adserver version < 5.0.5 by HackerOne user hoangn144. | 6.8 |
| 2020-04-01 | CVE-2018-11802 | Incorrect Authorization vulnerability in Apache Solr In Apache Solr, the cluster can be partitioned into multiple collections and only a subset of nodes actually host any given collection. | 4.3 |
| 2020-03-30 | CVE-2020-5275 | Incorrect Authorization vulnerability in Sensiolabs Symfony In symfony/security-http before versions 4.4.7 and 5.0.7, when a `Firewall` checks access control rule, it iterate overs each rule's attributes and stops as soon as the accessDecisionManager decides to grant access on the attribute, preventing the check of next attributes that should have been take into account in an unanimous strategy. | 8.1 |
| 2020-03-27 | CVE-2020-10510 | Incorrect Authorization vulnerability in SUN Ehrd 8/9 Sunnet eHRD, a human training and development management system, contains a vulnerability of Broken Access Control. | 6.5 |
| 2020-03-20 | CVE-2020-1796 | Incorrect Authorization vulnerability in Huawei Mate 20 Firmware and Mate 30 PRO Firmware There is an improper authorization vulnerability in several smartphones. | 6.6 |
| 2020-03-19 | CVE-2019-11361 | Incorrect Authorization vulnerability in Zohocorp Manageengine Remote Access Plus 10.0.258 Zoho ManageEngine Remote Access Plus 10.0.258 does not validate user permissions properly, allowing for privilege escalation and eventually a full application takeover. | 8.8 |