Vulnerabilities > Incorrect Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-11-26 | CVE-2018-13324 | Incorrect Authorization vulnerability in Buffalo Ts5600D1206 Firmware 3.610.10 Incorrect access control in nasapi in Buffalo TS5600D1206 version 3.61-0.10 allows attackers to bypass authentication by sending a modified HTTP Host header. | 7.5 |
| 2018-11-16 | CVE-2018-18955 | Incorrect Authorization vulnerability in multiple products In the Linux kernel 4.15.x through 4.19.x before 4.19.2, map_write() in kernel/user_namespace.c allows privilege escalation because it mishandles nested user namespaces with more than 5 UID or GID ranges. | 4.4 |
| 2018-11-16 | CVE-2018-15693 | Incorrect Authorization vulnerability in Inova-Software Inova Partner Inova Partner 5.0.5-RELEASE, Build 0510-0906 and earlier allows authenticated users authorization bypass via insecure direct object reference. | 3.5 |
| 2018-11-16 | CVE-2018-15692 | Incorrect Authorization vulnerability in Inova-Software Inova Partner Inova Partner 5.0.5-RELEASE, Build 0510-0906 and earlier allows authenticated users authorization bypass and data manipulation in certain functions. | 3.5 |
| 2018-11-16 | CVE-2018-7363 | Incorrect Authorization vulnerability in ZTE Zxhn F670 Firmware All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by improper authorization vulnerability. | 3.3 |
| 2018-11-15 | CVE-2018-16620 | Incorrect Authorization vulnerability in Sonatype Nexus Repository Manager Sonatype Nexus Repository Manager before 3.14 has Incorrect Access Control. | 5.0 |
| 2018-11-13 | CVE-2018-6980 | Incorrect Authorization vulnerability in VMWare Vrealize LOG Insight 4.6/4.6.1/4.7 VMware vRealize Log Insight (4.7.x before 4.7.1 and 4.6.x before 4.6.2) contains a vulnerability due to improper authorization in the user registration method. | 6.5 |
| 2018-11-13 | CVE-2018-7926 | Incorrect Authorization vulnerability in Huawei Watch 2 Firmware Huawei Watch 2 with versions and earlier than OWDD.180707.001.E1 have an improper authorization vulnerability. | 2.1 |
| 2018-11-13 | CVE-2018-7925 | Incorrect Authorization vulnerability in Huawei Emily-Al00A Firmware The radio module of some Huawei smartphones Emily-AL00A The versions before 8.1.0.171(C00) have a lock-screen bypass vulnerability. | 4.6 |
| 2018-11-06 | CVE-2018-9488 | Incorrect Authorization vulnerability in Google Android 8.0/8.1/9.0 In the SELinux permissions of crash_dump.te, there is a permissions bypass due to a missing restriction. | 4.6 |